Every CVE whose affected-product data names Arubanetworks Aos-cx, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (12)
CVE-2022-23679 — CVSS 8.8 (high): AOS-CX lacks Anti-CSRF protections in place for state-changing operations. This can potentially be exploited by an attacker to execute…
CVE-2022-23680 — CVSS 8.8 (high): AOS-CX lacks Anti-CSRF protections in place for state-changing operations. This can potentially be exploited by an attacker to execute…
CVE-2022-23684 — CVSS 8.8 (high): A vulnerability in the web-based management interface of AOS-CX could allow a remote authenticated user with read-only privileges to…
CVE-2022-23681 — CVSS 7.8 (high): Multiple vulnerabilities exist in the AOS-CX command line interface that could lead to authenticated command injection. A successful…
CVE-2022-23682 — CVSS 7.8 (high): Multiple vulnerabilities exist in the AOS-CX command line interface that could lead to authenticated command injection. A successful…
CVE-2022-23683 — CVSS 7.2 (high): Authenticated command injection vulnerabilities exist in the AOS-CX Network Analytics Engine via NAE scripts. Successful exploitation of…
CVE-2022-23691 — CVSS 6.8 (medium): A vulnerability exists in certain AOS-CX switch models which could allow an attacker with access to the recovery console to bypass normal…
CVE-2022-23690 — CVSS 5.3 (medium): A vulnerability in the web-based management interface of AOS-CX could allow a remote unauthenticated attacker to fingerprint the exact…
CVE-2022-23687 — CVSS 4.3 (medium): Multiple vulnerabilities exist in the processing of packet data by the LLDP service of AOS-CX. Successful exploitation of these…
CVE-2022-23688 — CVSS 4.3 (medium): Multiple vulnerabilities exist in the processing of packet data by the LLDP service of AOS-CX. Successful exploitation of these…
CVE-2022-23689 — CVSS 4.3 (medium): Multiple vulnerabilities exist in the processing of packet data by the LLDP service of AOS-CX. Successful exploitation of these…
CVE-2022-23686 — CVSS 4.3 (medium): Multiple vulnerabilities exist in the processing of packet data by the LLDP service of AOS-CX. Successful exploitation of these…