Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
There are command injection vulnerabilities present in the AirWave application. Certain input fields controlled by an administrative user are not properly sanitized before being parsed by AirWave. If conditions are met, an attacker can obtain command execution on the host.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Aruba Networks AirWave Management Platform 注入漏洞
Vulnerability Description
Aruba Networks AirWave Management Platform是美国安移通网络(Aruba Networks)公司的一套适用于多供应商管理的网络管理软件。该软件能够提供实时监控、主动报警和历史数据报告等功能。 Aruba Networks AirWave Management Platform 8.2.10.1之前的8.x中存在注入漏洞,该漏洞源于在AirWave解析之前,程序未正确清理由管理员用户控制的某些输入字段。攻击者可利用该漏洞执行命令。
CVSS Information
N/A
Vulnerability Type
N/A