Arubanetworks Aruba Instant — known CVE vulnerabilities
Every CVE whose affected-product data names Arubanetworks Aruba Instant, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (12)
CVE-2016-2031 — CVSS 9.8 (critical): Multiple vulnerabilities exists in Aruba Instate before 4.1.3.0 and 4.2.3.1 due to insufficient validation of user-supplied input and…
CVE-2018-7084 — CVSS 9.8 (critical): A command injection vulnerability is present that permits an unauthenticated user with access to the Aruba Instant web interface to execute…
CVE-2021-37726 — CVSS 9.8 (critical): A remote buffer overflow vulnerability was discovered in HPE Aruba Instant (IAP) version(s): Aruba Instant 8.7.x.x: 8.7.0.0 through…
CVE-2016-2032 — CVSS 7.5 (high): A vulnerability exists in the Aruba AirWave Management Platform 8.x prior to 8.2 in the management interface of an underlying system…
CVE-2018-7083 — CVSS 7.5 (high): If a process running within Aruba Instant crashes, it may leave behind a "core dump", which contains the memory contents of the process at…
CVE-2018-7082 — CVSS 7.2 (high): A command injection vulnerability is present in Aruba Instant that permits an authenticated administrative user to execute arbitrary…
CVE-2021-37727 — CVSS 7.2 (high): A remote arbitrary command execution vulnerability was discovered in HPE Aruba Instant (IAP) version(s): 6.4.x.x: 6.4.4.8-4.2.4.18 and…
CVE-2021-37730 — CVSS 7.2 (high): A remote arbitrary command execution vulnerability was discovered in HPE Aruba Instant (IAP) version(s): Aruba Instant 6.4.x.x…
CVE-2021-37732 — CVSS 7.2 (high): A remote arbitrary command execution vulnerability was discovered in HPE Aruba Instant (IAP) version(s): Aruba Instant 6.4.x.x…
CVE-2021-37734 — CVSS 6.5 (medium): A remote unauthorized read access to files vulnerability was discovered in Aruba Instant version(s): 6.4.x.x: 6.4.4.8-4.2.4.18 and below…
CVE-2018-7064 — CVSS 6.1 (medium): A reflected cross-site scripting (XSS) vulnerability is present in an unauthenticated Aruba Instant web interface. An attacker could use…
CVE-2021-37735 — CVSS 5.3 (medium): A remote denial of service vulnerability was discovered in Aruba Instant version(s): Aruba Instant 6.5.x.x: 6.5.4.18 and below; Aruba…