CVE-2024-31467

🗓️ 14 May 2024 22:08:51Reported by hpeType

Buffer overflow in CLI service allows unauthenticated remote code execution via PAPI UDP por

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2024-31467	24 Jun 202513:50	–	circl
CNNVD	Aruba Networks ArubaOS 和 InstantOS 安全漏洞	14 May 202400:00	–	cnnvd
Cvelist	CVE-2024-31467 Unauthenticated Buffer Overflow Vulnerabilities in CLI Service Accessed by the PAPI Protocol	14 May 202422:08	–	cvelist
EUVD	EUVD-2024-29347	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in Aruba Networks ArubaOS	16 May 202412:41	–	ncsc
NVD	CVE-2024-31467	14 May 202423:15	–	nvd
Positive Technologies	PT-2024-24098 · Aruba · Aruba Access Point	14 May 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-31467	5 Feb 202500:28	–	redhatcve
Vulnrichment	CVE-2024-31467 Unauthenticated Buffer Overflow Vulnerabilities in CLI Service Accessed by the PAPI Protocol	14 May 202422:08	–	vulnrichment

NVD

Node

arubanetworks arubaosRange10.3.0.0–10.4.1.1

arubanetworks arubaosRange10.5.0.0–10.5.1.1

hp instantosRange6.4.0.0–8.6.0.24

hp instantosRange8.7.0.0–8.10.0.11

[
  {
    "defaultStatus": "unaffected",
    "product": "AOS-8 Instant and AOS-10 AP",
    "vendor": "Hewlett Packard Enterprise (HPE)",
    "versions": [
      {
        "lessThanOrEqual": "10.5.1.0",
        "status": "affected",
        "version": "10.5.0.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "10.4.1.0",
        "status": "affected",
        "version": "10.4.0.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "8.11.2.1",
        "status": "affected",
        "version": "8.11.0.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "8.10.0.10",
        "status": "affected",
        "version": "8.10.0.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "8.6.0.23",
        "status": "affected",
        "version": "8.6.0.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
support	www.support.hpe.com/hpesc/public/docDisplay
arubanetworks	www.arubanetworks.com/assets/alert/ARUBA-PSA-2024-006.txt

24 Jun 2025 14:15Current

8.5High risk

Vulners AI Score8.5

CVSS 3.19.8

EPSS0.01615

SSVC

CWE-121