Arubanetworks Edgeconnect Sd-wan Orchestrator — known CVE vulnerabilities
Every CVE whose affected-product data names Arubanetworks Edgeconnect Sd-wan Orchestrator, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (29)
CVE-2025-37184 — CVSS 9.8 (critical): A vulnerability exists in an Orchestrator service that could allow an unauthenticated remote attacker to bypass multi-factor authentication…
CVE-2023-37422 — CVSS 8.1 (high): Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to…
CVE-2023-37424 — CVSS 8.1 (high): A vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an unauthenticated remote attacker to…
CVE-2024-41914 — CVSS 8.1 (high): A vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to…
CVE-2023-37423 — CVSS 8.1 (high): Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to…
CVE-2023-37421 — CVSS 8.1 (high): Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to…
CVE-2023-37425 — CVSS 8.0 (high): A vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an unauthenticated remote attacker to…
CVE-2023-37426 — CVSS 7.4 (high): EdgeConnect SD-WAN Orchestrator instances prior to the versions resolved in this advisory were found to have shared static SSH host keys…
CVE-2023-37428 — CVSS 7.2 (high): A vulnerability in the EdgeConnect SD-WAN Orchestrator web-based management interface allows remote authenticated users to run arbitrary…
CVE-2025-37183 — CVSS 7.2 (high): Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to…
CVE-2024-22443 — CVSS 7.2 (high): A vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to…
CVE-2025-37182 — CVSS 7.2 (high): Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to…
CVE-2025-37181 — CVSS 7.2 (high): Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to…
CVE-2023-37427 — CVSS 7.2 (high): A vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to…
CVE-2024-41136 — CVSS 6.8 (medium): An authenticated command injection vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateways Command Line Interface…
CVE-2023-37435 — CVSS 6.5 (medium): Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote…
CVE-2023-37429 — CVSS 6.5 (medium): Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote…
CVE-2023-37430 — CVSS 6.5 (medium): Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote…
CVE-2023-37431 — CVSS 6.5 (medium): Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote…
CVE-2023-37432 — CVSS 6.5 (medium): Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote…
CVE-2023-37433 — CVSS 6.5 (medium): Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote…
CVE-2023-37434 — CVSS 6.5 (medium): Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote…
CVE-2023-37436 — CVSS 6.5 (medium): Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote…
CVE-2023-37437 — CVSS 6.5 (medium): Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote…
CVE-2023-37438 — CVSS 6.5 (medium): Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote…
CVE-2024-22444 — CVSS 6.1 (medium): A vulnerability within the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow a remote attacker to conduct a…
CVE-2023-37439 — CVSS 6.1 (medium): Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote…
CVE-2023-37440 — CVSS 5.5 (medium): A vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an unauthenticated remote attacker to…
CVE-2025-37185 — CVSS 5.5 (medium): Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to…