CVE-2023-22759

Name of the Vulnerable Software and Affected Versions ArubaOS (affected versions not specified)

Description The issue is related to authenticated remote command injection vulnerabilities in the ArubaOS web-based management interface. Successful exploitation allows an attacker to execute arbitrary commands as a privileged user on the underlying operating system, potentially leading to full compromise of the device. The vulnerability exists due to insufficient measures to neutralize special elements used in operating system commands.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.