Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-30501

Vulnerabilities exist in the Aruba EdgeConnect Enterprise command line interface that allow remote authenticated users to run arbitrary commands on the underlying host. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as root on the underlying operating system leading to complete system compromise.

Published

2023-05-16T19:15:09.493

Last Modified

2024-11-21T08:00:18.220

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.2 (HIGH)

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	arubanetworks	edgeconnect_enterprise	≤ 9.0.8.0	Yes
Application	arubanetworks	edgeconnect_enterprise	≤ 9.1.5.0	Yes
Application	arubanetworks	edgeconnect_enterprise	≤ 9.2.3.0	Yes

References

https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-007.txt ([email protected])
https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-007.txt (af854a3a-2127-422b-91ae-364da2661108)