Vulnerability Details CVE-2023-30507
Multiple authenticated path traversal vulnerabilities exist in the Aruba EdgeConnect Enterprise command line interface. Successful exploitation of these vulnerabilities result in the ability to read arbitrary files on the underlying operating system, including sensitive system files.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 48.9%
CVSS Severity
CVSS v3 Score 4.9
References
Products affected by CVE-2023-30507
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:*
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:-
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:8.1.0.0
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:8.1.9.15
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:8.3.0.0
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:8.3.0.8
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:8.3.1.0
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:8.3.1.2
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:8.3.2.0
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:9.0.0.0
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:9.0.2.0
-
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:9.1.0.0