CVE-2024-47464

🗓️ 05 Nov 2024 23:02:58Reported by hpeType

An authenticated Path Traversal vuln allows remote unauthorized access by copying arbitrary files to user-readable location in Instant AOS-8 and AOS-1

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2024-47464	6 Nov 202400:46	–	circl
CNNVD	Hewlett Packard Enterprise ArubaOS 安全漏洞	5 Nov 202400:00	–	cnnvd
Cvelist	CVE-2024-47464 Authenticated Path Traversal Vulnerability Leads to a Remote Unauthorized Access to Files	5 Nov 202423:02	–	cvelist
EUVD	EUVD-2024-42488	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in Aruba Networks ArubaOS	7 Nov 202408:51	–	ncsc
NVD	CVE-2024-47464	5 Nov 202423:15	–	nvd
The Hacker News	HPE Issues Critical Security Patches for Aruba Access Point Vulnerabilities	11 Nov 202409:57	–	thn
Vulnrichment	CVE-2024-47464 Authenticated Path Traversal Vulnerability Leads to a Remote Unauthorized Access to Files	5 Nov 202423:02	–	vulnrichment

[
  {
    "defaultStatus": "affected",
    "product": "HPE Aruba Networking Access Points, Instant AOS-8, and AOS-10",
    "vendor": "Hewlett Packard Enterprise (HPE)",
    "versions": [
      {
        "lessThanOrEqual": "<=10.4.1.4",
        "status": "affected",
        "version": "AOS-10.4.x.x: 10.4.1.4 and below",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "<=8.12.0.2",
        "status": "affected",
        "version": "Instant AOS-8.12.x.x: 8.12.0.2 and below",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "<=8.10.0.13",
        "status": "affected",
        "version": "Instant AOS-8.10.x.x: 8.10.0.13 and below",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
support	www.support.hpe.com/hpesc/public/docDisplay

15 Apr 2026 00:35Current

6.6Medium risk

Vulners AI Score6.6

CVSS 3.16.8

EPSS0.00107

SSVC

CWE-22