A remote authenticated sql injection vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. Multiple vulnerabilities in the API of AirWave could allow an authenticated remote attacker to conduct SQL injection attacks against the AirWave instance. An attacker could exploit these vulnerabilities to obtain and modify sensitive information in the underlying database.
Advisories
Source ID Title
EUVD EUVD EUVD-2021-13739 A remote authenticated sql injection vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. Multiple vulnerabilities in the API of AirWave could allow an authenticated remote attacker to conduct SQL injection attacks against the AirWave instance. An attacker could exploit these vulnerabilities to obtain and modify sensitive information in the underlying database.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: hpe

Published:

Updated: 2024-08-03T20:33:41.406Z

Reserved: 2021-02-09T00:00:00

Link: CVE-2021-26966

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-03-05T17:15:14.593

Modified: 2024-11-21T05:57:08.210

Link: CVE-2021-26966

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.