EUVD-2024-39600

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Multiple Denial-of-Service vulnerabilities in AP Certificate Management daemon can disrupt Access Point operation

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2024-42396	6 Aug 202421:42	–	circl
CNNVD	Aruba Networks Access Points 安全漏洞	6 Aug 202400:00	–	cnnvd
CVE	CVE-2024-42396	6 Aug 202418:54	–	cve
Cvelist	CVE-2024-42396 Unauthenticated Denial-of-Service (DoS) Vulnerabilities in the AP Certificate Management Service Accessed by the PAPI Protocol	6 Aug 202418:54	–	cvelist
NCSC	Vulnerabilities fixed in Aruba Networks ArubaOS and InstantOS	7 Aug 202409:04	–	ncsc
NVD	CVE-2024-42396	6 Aug 202419:15	–	nvd
OSV	CVE-2024-42396	6 Aug 202419:15	–	osv
Vulnrichment	CVE-2024-42396 Unauthenticated Denial-of-Service (DoS) Vulnerabilities in the AP Certificate Management Service Accessed by the PAPI Protocol	6 Aug 202418:54	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "9b9b1ffc-41c6-32b5-9495-397d70b8200e",
        "vendor": {
          "name": "Hewlett Packard Enterprise (HPE)"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "65c7b077-f408-39c9-8852-39d957a51c2d",
        "product": {
          "name": "Hpe Aruba Networking InstantOS and Aruba Access Points running ArubaOS 10"
        },
        "product_version": "Version 8.12.0.0: 8.12.0.1 and below ≤≤8.12.0.1"
      },
      {
        "id": "aa671e6a-adbf-3d36-917e-53068a0661f9",
        "product": {
          "name": "Hpe Aruba Networking InstantOS and Aruba Access Points running ArubaOS 10"
        },
        "product_version": "Version 8.10.0.0: 8.10.0.12 and below ≤≤8.10.0.12"
      }
    ]
  }
]

Source	Link
support	www.support.hpe.com/hpesc/public/docDisplay

03 Oct 2025 20:07Current

6.6Medium risk

Vulners AI Score6.6

CVSS 3.15.3

EPSS0.00099

SSVC