CVE-2015-2201: OS Command Injection
First published: Tue Sep 05 2023(Updated: )
Aruba AirWave before 7.7.14.2 and 8.x before 8.0.7 allows VisualRF remote OS command execution and file disclosure by administrative users.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Arubanetworks Airwave | >=7.0.0<7.7.14.2 | |
| Hp Airwave | >=8.0.0.0<8.0.7 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for Aruba AirWave?
The vulnerability ID for Aruba AirWave is CVE-2015-2201.
What is the severity of CVE-2015-2201?
The severity of CVE-2015-2201 is high, with a severity value of 7.2.
What is the affected software version range for CVE-2015-2201?
The affected software version range for CVE-2015-2201 is Aruba AirWave before 7.7.14.2 and 8.x before 8.0.7.
What is the CWE number for CVE-2015-2201?
The CWE number for CVE-2015-2201 is 78.
How can I fix the vulnerability in Aruba AirWave?
To fix the vulnerability in Aruba AirWave, you should update to version 7.7.14.2 or 8.0.7 or later.
- collector/nvd-api
- collector/nvd-index
- agent/author
- agent/weakness
- agent/references
- agent/severity
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/arubanetworks
- canonical/arubanetworks airwave
- version/arubanetworks airwave/7.0.0
- vendor/hp
- canonical/hp airwave
- version/hp airwave/8.0.0.0