Lucene search
HistoryAug 06, 2024 - 8:15 p.m.
CVE-2024-42399
vulnerabilities
unauthenticated
dos
soft ap daemon
papi protocol
exploitation
access point
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
EPSS
0
Percentile
16.6%
Multiple unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the Soft AP daemon accessed via the PAPI protocol. Successful exploitation of these vulnerabilities results in the ability to interrupt the normal operation of the affected Access Point.
Affected configurations
Node
arubanetworksarubaosRange10.4.0.0–10.4.1.2
ORarubanetworksarubaosMatch10.6.0.0
ORhpinstantosRange8.10.0.0–8.10.0.13
ORhpinstantosRange8.12.0.0–8.12.0.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| arubanetworks | arubaos | * | cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:* |
| arubanetworks | arubaos | 10.6.0.0 | cpe:2.3:o:arubanetworks:arubaos:10.6.0.0:*:*:*:*:*:*:* |
| hp | instantos | * | cpe:2.3:o:hp:instantos:*:*:*:*:*:*:*:* |
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
EPSS
0
Percentile
16.6%
Related for NVD:CVE-2024-42399