Authenticated remote command injection vulnerabilities exist in the ArubaOS web-based management interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. This allows an attacker to fully compromise the underlying operating system on the device running ArubaOS.

Related CVEs

CVE-2023-22758

Key Information

GHSA ID

GHSA-2h49-mpgf-jr58

Published

March 1, 2023 9:30 AM

Last Modified

March 10, 2023 3:30 AM

CVSS Score

7.5 /10

Primary Ecosystem

Unknown

Primary Package

Unknown

GitHub Reviewed

✗ No

Dataset

Last updated: September 6, 2025 6:30 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.