Vulnerability Details CVE-2023-30507
Multiple authenticated path traversal vulnerabilities exist in the Aruba EdgeConnect Enterprise command line interface. Successful exploitation of these vulnerabilities result in the ability to read arbitrary files on the underlying operating system, including sensitive system files.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.0%
CVSS Severity
CVSS v3 Score 4.9
References
Products affected by CVE-2023-30507
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:*
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:-
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:8.1.0.0
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:8.1.9.15
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:8.3.0.0
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:8.3.0.8
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:8.3.1.0
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:8.3.1.2
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:8.3.2.0
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:9.0.0.0
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:9.0.2.0
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:9.1.0.0