Vulnerability Details CVE-2023-22762
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.5%
CVSS Severity
CVSS v3 Score 7.2
References
Products affected by CVE-2023-22762
-
cpe:2.3:a:arubanetworks:sd-wan:*
-
cpe:2.3:h:arubanetworks:7010:-
-
cpe:2.3:h:arubanetworks:7030:-
-
cpe:2.3:h:arubanetworks:7205:-
-
cpe:2.3:h:arubanetworks:7210:-
-
cpe:2.3:h:arubanetworks:7220:-
-
cpe:2.3:h:arubanetworks:7240xm:-
-
cpe:2.3:h:arubanetworks:7280:-
-
cpe:2.3:h:arubanetworks:9004-lte:-
-
cpe:2.3:h:arubanetworks:9004:-
-
cpe:2.3:h:arubanetworks:9012:-
-
cpe:2.3:h:arubanetworks:mc-va-10:-
-
cpe:2.3:h:arubanetworks:mc-va-1k:-
-
cpe:2.3:h:arubanetworks:mc-va-250:-
-
cpe:2.3:h:arubanetworks:mc-va-50:-
-
cpe:2.3:h:arubanetworks:mcr-hw-10k:-
-
cpe:2.3:h:arubanetworks:mcr-hw-1k:-
-
cpe:2.3:h:arubanetworks:mcr-hw-5k:-
-
cpe:2.3:h:arubanetworks:mcr-va-10k:-
-
cpe:2.3:h:arubanetworks:mcr-va-1k:-
-
cpe:2.3:h:arubanetworks:mcr-va-500:-
-
cpe:2.3:h:arubanetworks:mcr-va-50:-
-
cpe:2.3:h:arubanetworks:mcr-va-5k:-
-
cpe:2.3:o:arubanetworks:arubaos:10.3.0.0
-
cpe:2.3:o:arubanetworks:arubaos:10.3.1.0
-
cpe:2.3:o:arubanetworks:arubaos:8.10.0.0
-
cpe:2.3:o:arubanetworks:arubaos:8.6.0.0
-
cpe:2.3:o:arubanetworks:arubaos:8.6.0.11
-
cpe:2.3:o:arubanetworks:arubaos:8.6.0.5
-
cpe:2.3:o:arubanetworks:arubaos:8.6.0.6
-
cpe:2.3:o:arubanetworks:arubaos:8.6.0.7
-
cpe:2.3:o:arubanetworks:arubaos:8.6.0.8
-
cpe:2.3:o:arubanetworks:arubaos:8.6.0.9