CVE-2023-30505

Name of the Vulnerable Software and Affected Versions Aruba EdgeConnect Enterprise (affected versions not specified)

Description The issue exists in the command line interface of Aruba EdgeConnect Enterprise, allowing remote authenticated users to run arbitrary commands on the underlying host. Successful exploitation results in the ability to execute arbitrary commands as root on the underlying operating system, leading to complete system compromise. This is due to the lack of measures to neutralize special elements used in the operating system command.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.