Vulnerabilities (CVE)

Filtered by vendor Aruba Networks Subscribe
Filtered by product Mc-800
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-6054 1 Aruba Networks 1 Mc-800 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in the login page in the management interface in the Aruba 800 Mobility Controller 2.5.4.18 and earlier, and 2.4.8.6-FIPS and earlier, allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the /screens URI, related to the url variable.