N/A

A vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to conduct a server-side prototype pollution attack. Successful exploitation of this vulnerability could allow an attacker to execute arbitrary commands on the underlying operating system leading to complete system compromise.

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

N/A

EdgeConnect SD-WAN 安全漏洞

EdgeConnect SD-WAN是美国HPE的为零信任和 SASE 提供安全的网络基础。它包括一流的 SD-WAN 和下一代防火墙，可提供无与伦比的体验质量和高级安全性。 HPE Aruba Networking EdgeConnect SD-WAN Orchestrator存在安全漏洞。攻击者利用该漏洞在底层操作系统上执行任意命令，从而导致系统完全被攻陷。

N/A

N/A