CVE-2024-31478
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
7 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
Multiple unauthenticated Denial-of-Service (DoS) vulnerabilities exists in the Soft AP daemon accessed via the PAPI protocol. Successful exploitation of these vulnerabilites result in the ability to interrupt the normal operation of the affected Access Point.
CNA Affected
[
{
"defaultStatus": "affected",
"product": "Aruba InstantOS and Aruba Access Points running ArubaOS 10",
"vendor": "Hewlett Packard Enterprise (HPE)",
"versions": [
{
"status": "affected",
"version": "InstantOS or ArubaOS (access points) 10.5.x.x: 10.5.1.0 and below."
},
{
"status": "affected",
"version": "InstantOS or ArubaOS (access points) 10.4.x.x: 10.4.1.0 and below."
},
{
"status": "affected",
"version": "InstantOS or ArubaOS (access points) 8.11.x.x: 8.11.2.1 and below."
},
{
"status": "affected",
"version": "InstantOS or ArubaOS (access points) 8.10.x.x: 8.10.0.10 and below."
},
{
"status": "affected",
"version": "InstantOS or ArubaOS (access points) 8.6.x.x: 8.6.0.23 and below."
}
]
}
]Related
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
7 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%