CVE-2022-37911 Information

Description

Due to improper restrictions on XML entities multiple vulnerabilities exist in the command line interface of ArubaOS. A successful exploit could allow an authenticated attacker to retrieve files from the local system or cause the application to consume system resources resulting in a denial of service condition.

Reference

https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-016.txt