GCVE - cpe:2.3:a:n/a:aruba_access_points:_100_series;_103_series;_110_series;_120_series;_130_series;_200_series;_207_series;_210_series;_220_series;_260_series;_300_series;_303_series;_310_series;_318_series_hardened_access_points;_320_series;_330_series;_340_series;_370_series;_500_series;_510_series;_530_series;_550_series;_630_series;_650

Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:aruba_access_points:_100_series;_103_series;_110_series;_120_series;_130_series;_200_series;_207_series;_210_series;_220_series;_260_series;_300_series;_303_series;_310_series;_318_series_hardened_access_points;_320_series;_330_series;_340_series;_370_series;_500_series;_510_series;_530_series;_550_series;_630_series;_650_series;:*:*:*:*:*:*:*:*

part: a version: _100_series;_103_series;_110_series;_120_series;_130_series;_200_series;_207_series;_210_series;_220_series;_260_series;_300_series;_303_series;_310_series;_318_series_hardened_access_points;_320_series;_330_series;_340_series;_370_series;_500_series;_510_series;_530_series;_550_series;_630_series;_650_series; update: *

Vendor	N/A (`22f567d3-1203-528c-8f0e-3eb9c2f6ca78`)
Product	Aruba Access Points (`e4bc159f-b6bc-5e77-b52e-6d3bfb561ae8`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-37896`	vulnerable	2026-06-08 05:47:13.194904	Details available A vulnerability in the Aruba InstantOS and ArubaOS 10 web management interface could allow a remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the interface. A successful exploit could allow an attacker to execute arbitrary script code in a victim’s browser in the context of the affected interface of Aruba InstantOS 6.4.x: 6.4.4.8-4.2.4.20 and below; Aruba InstantOS 6.5.x: 6.5.4.23 and below; Aruba InstantOS 8.6.x: 8.6.0.18 and below; Aruba InstantOS 8.7.x: 8.7.1.9 and below; Aruba InstantOS 8.10.x: 8.10.0.1 and below; ArubaOS 10.3.x: 10.3.1.0 and below; Aruba has released upgrades for Aruba InstantOS that address this security vulnerability. Published: 2022-10-07T00:00:00.000Z Updated: 2024-08-03T10:37:41.742Z Open on db.gcve.eu Reference links https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-014.txt https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-37895`	vulnerable	2026-06-08 05:47:13.186930	Details available An unauthenticated Denial of Service (DoS) vulnerability exists in the handling of certain SSID strings by Aruba InstantOS and ArubaOS 10. Successful exploitation of this vulnerability results in the ability to interrupt the normal operation of the affected AP of Aruba InstantOS 6.4.x: 6.4.4.8-4.2.4.20 and below; Aruba InstantOS 6.5.x: 6.5.4.23 and below; Aruba InstantOS 8.6.x: 8.6.0.18 and below; Aruba InstantOS 8.7.x: 8.7.1.9 and below; Aruba InstantOS 8.10.x: 8.10.0.1 and below; ArubaOS 10.3.x: 10.3.1.0 and below; Aruba has released upgrades for Aruba InstantOS that address this security vulnerability. Published: 2022-10-07T00:00:00.000Z Updated: 2024-08-03T10:37:42.042Z Open on db.gcve.eu Reference links https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-014.txt https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-37894`	vulnerable	2026-06-08 05:47:13.186272	Details available An unauthenticated Denial of Service (DoS) vulnerability exists in the handling of certain SSID strings by Aruba InstantOS and ArubaOS 10. Successful exploitation of this vulnerability results in the ability to interrupt the normal operation of the affected AP of Aruba InstantOS 6.4.x: 6.4.4.8-4.2.4.20 and below; Aruba InstantOS 6.5.x: 6.5.4.23 and below; Aruba InstantOS 8.6.x: 8.6.0.18 and below; Aruba InstantOS 8.7.x: 8.7.1.9 and below; Aruba InstantOS 8.10.x: 8.10.0.1 and below; ArubaOS 10.3.x: 10.3.1.0 and below; Aruba has released upgrades for Aruba InstantOS that address this security vulnerability. Published: 2022-10-07T00:00:00.000Z Updated: 2024-08-03T10:37:41.936Z Open on db.gcve.eu Reference links https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-014.txt https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-37893`	vulnerable	2026-06-08 05:47:13.185876	Details available An authenticated command injection vulnerability exists in the Aruba InstantOS and ArubaOS 10 command line interface. Successful exploitation of this vulnerability results in the ability to execute arbitrary commands as a privileged user on the underlying operating system of Aruba InstantOS 6.4.x: 6.4.4.8-4.2.4.20 and below; Aruba InstantOS 6.5.x: 6.5.4.23 and below; Aruba InstantOS 8.6.x: 8.6.0.18 and below; Aruba InstantOS 8.7.x: 8.7.1.9 and below; Aruba InstantOS 8.10.x: 8.10.0.1 and below; ArubaOS 10.3.x: 10.3.1.0 and below; Aruba has released upgrades for Aruba InstantOS that address this security vulnerability. Published: 2022-10-07T00:00:00.000Z Updated: 2024-08-03T10:37:41.935Z Open on db.gcve.eu Reference links https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-014.txt https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-37892`	vulnerable	2026-06-08 05:47:13.185124	Details available A vulnerability in the Aruba InstantOS and ArubaOS 10 web management interface could allow an unauthenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface. A successful exploit could allow an attacker to execute arbitrary script code in a victim’s browser in the context of the affected interface of Aruba InstantOS 6.4.x: 6.4.4.8-4.2.4.20 and below; Aruba InstantOS 6.5.x: 6.5.4.23 and below; Aruba InstantOS 8.6.x: 8.6.0.18 and below; Aruba InstantOS 8.7.x: 8.7.1.9 and below; Aruba InstantOS 8.10.x: 8.10.0.1 and below; ArubaOS 10.3.x: 10.3.1.0 and below; Aruba has released upgrades for Aruba InnstantOS that address this security vulnerability. Published: 2022-10-07T00:00:00.000Z Updated: 2024-08-03T10:37:41.871Z Open on db.gcve.eu Reference links https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-014.txt https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-37891`	vulnerable	2026-06-08 05:47:13.184412	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-37890`	vulnerable	2026-06-08 05:47:13.180912	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-37889`	vulnerable	2026-06-08 05:47:13.180169	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-37888`	vulnerable	2026-06-08 05:47:13.142279	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-37887`	vulnerable	2026-06-08 05:47:13.141328	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-37886`	vulnerable	2026-06-08 05:47:13.140733	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Aruba Access Points

PURL mappings

Vulnerability references

Contribute