SEC Consult SA-20170301 :: XXE and XSS vulnerabilities in Aruba AirWave

March 1, 2017 007admin Leave a comment

Posted by SEC Consult Vulnerability Lab on Mar 01

SEC Consult Vulnerability Lab Security Advisory < 20170301-0 >
=======================================================================
title: XML External Entity Injection (XXE),
Reflected Cross Site Scripting
product: Aruba AirWave
vulnerable version: <=8.2.3
fixed version: 8.2.3.1
CVE number: CVE-2016-8526, CVE-2016-8527
impact: high
homepage:…

007 Software

SEC Consult SA-20170301 :: XXE and XSS vulnerabilities in Aruba AirWave

Leave a Reply Cancel reply

Software and Security Information