High severity7.5NVD Advisory· Published Jan 15, 2021· Updated Jun 17, 2026
CVE-2020-24641
CVE-2020-24641
Description
In Aruba AirWave Glass before 1.3.3, there is a Server-Side Request Forgery vulnerability through an unauthenticated endpoint that if successfully exploited can result in disclosure of sensitive information. This can be used to perform an authentication bypass and ultimately gain administrative access on the web administrative interface.
Affected products
2- Aruba/AirWave Glassdescription
- Range: <1.3.3
Patches
Vulnerability mechanics
References
1- www.arubanetworks.com/assets/alert/ARUBA-PSA-2021-001.txtnvdVendor Advisory
News mentions
0No linked articles in our index yet.