Edgeconnect sd-wan orchestrator
This hub aggregates every CVE we track for Edgeconnect sd-wan orchestrator, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.
29
CVEs tracked
1
Critical
13
High
0
In CISA KEV
Severity distribution
MEDIUM15HIGH13CRITICAL1
Monthly trend
4
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
5
0
0
0
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Edgeconnect sd-wan orchestrator.
- CVE-2025-37181Authenticated SQL Injection in EdgeConnect SD-WAN Orchestrator Web-Based Management Interface7.2
- CVE-2025-37185Authenticated Stored Cross-Site Scripting Vulnerabilities (XSS) in EdgeConnect SD-WAN Orchestrator Web Administration Interface5.5
- CVE-2025-37184Unauthenticated Bypass Allows Multi-Factor Authentication Circumvention9.8
- CVE-2025-37183Authenticated SQL Injection in EdgeConnect SD-WAN Orchestrator Web-Based Management Interface7.2
- CVE-2025-37182Authenticated SQL Injection in EdgeConnect SD-WAN Orchestrator Web-Based Management Interface7.2
- CVE-2024-41136Authenticated Command Injection in HPE Aruba Networking EdgeConnect SD-WAN Command Line Interface6.8
- CVE-2024-22444A vulnerability within the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow a remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of...6.1
- CVE-2024-22443A vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to conduct a server-side prototype pollution attack. Successful...7.2
- CVE-2024-41914A vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against a...8.1
- CVE-2023-37440Authenticated Server-Side Request Forgery (SSRF) Leading to Information Disclosure5.5
- CVE-2023-37439Reflected Cross Site Scripting in EdgeConnect SD-WAN Orchestrator Web Management Interface6.1
- CVE-2023-37438Authenticated SQL Injection Vulnerabilities in EdgeConnect SD-WAN Orchestrator Web-based Management Interface6.5
- CVE-2023-37437Authenticated SQL Injection Vulnerabilities in EdgeConnect SD-WAN Orchestrator Web-based Management Interface6.5
- CVE-2023-37436Authenticated SQL Injection Vulnerabilities in EdgeConnect SD-WAN Orchestrator Web-based Management Interface6.5
- CVE-2023-37435Authenticated SQL Injection Vulnerabilities in EdgeConnect SD-WAN Orchestrator Web-based Management Interface6.5
Product normalization is registry-driven with AI assist and human review. How it works