Back to search
CVE-2013-2290
Published: Mar 28, 2013
Modified: Aug 6, 2024
PUBLISHED
Description
Cross-site scripting (XSS) vulnerability in the dashboard of the ArubaOS Administration WebUI in Aruba Networks ArubaOS 6.2.x before 6.2.0.3, 6.1.3.x before 6.1.3.7, 6.1.x-FIPS before 6.1.4.3-FIPS, and 6.1.x-AirGroup before 6.1.3.6-AirGroup, as used by Mobility Controller, allows remote wireless access points to inject arbitrary web script or HTML via a crafted SSID.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
52690
third-party-advisory
x_refsource_SECUNIA
58579
vdb-entry
x_refsource_BID
aruba-mobility-cve20132290-xss(82917)
vdb-entry
x_refsource_XF
91485
vdb-entry
x_refsource_OSVDB
http://www.arubanetworks.com/support/alerts/aid-042213.asc
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now