Lucene search

PRIOn knowledge basePRION:CVE-2023-45618

HistoryNov 14, 2023 - 11:15 p.m.

Arbitrary file deletion

2023-11-1423:15:00

PRIOn knowledge base

www.prio-n.com

vulnerability

airwave

papi

access point

management protocol

file deletion

exploitation

operating system

interruption

integrity

7.4 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

22.0%

JSON

There are arbitrary file deletion vulnerabilities in the AirWave client service accessed by PAPI (Aruba’s access point management protocol). Successful exploitation of these vulnerabilities result in the ability to delete arbitrary files on the underlying operating system, which could lead to the ability to interrupt normal operation and impact the integrity of the access point.

CPENameOperatorVersion
arubaoseq10.5.0.0
arubaosge10.3.0.0
arubaoslt10.4.0.3
instantosge6.4.0.0
instantoslt8.6.0.23
instantosge8.11.0.0
instantoslt8.11.2.0
instantosge8.10.0.0
instantoslt8.10.0.9

Name	Operator	Version
arubaos	eq	10.5.0.0
arubaos	ge	10.3.0.0
arubaos	lt	10.4.0.3
instantos	ge	6.4.0.0
instantos	lt	8.6.0.23
instantos	ge	8.11.0.0
instantos	lt	8.11.2.0
instantos	ge	8.10.0.0
instantos	lt	8.10.0.9

References

www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-017.txt