Unrated severityNVD Advisory· Published May 16, 2008· Updated Jun 16, 2026
CVE-2008-2272
CVE-2008-2272
Description
Multiple cross-site scripting (XSS) vulnerabilities in the web interface in Aruba Mobility Controller 2.4.8.x-FIPS, 2.5.5.x, 2.5.6.x, 3.1.1.x, 3.2.0.x, and 3.3.1.x allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected products
8cpe:2.3:a:aruba_networks:aruba_mobility_controller:2.4.8:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:aruba_networks:aruba_mobility_controller:2.4.8:*:*:*:*:*:*:*
- cpe:2.3:a:aruba_networks:aruba_mobility_controller:2.4.8:*:fips:*:*:*:*:*
- cpe:2.3:a:aruba_networks:aruba_mobility_controller:2.5.5:*:*:*:*:*:*:*
- cpe:2.3:a:aruba_networks:aruba_mobility_controller:2.5.6:*:*:*:*:*:*:*
- cpe:2.3:a:aruba_networks:aruba_mobility_controller:3.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:aruba_networks:aruba_mobility_controller:3.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:aruba_networks:aruba_mobility_controller:3.3.1:*:*:*:*:*:*:*
- (no CPE)range: 2.4.8.x-FIPS, 2.5.5.x, 2.5.6.x, 3.1.1.x, 3.2.0.x, and 3.3.1.x
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.