CVE-2026-42509

creationtimestamp| type| source ---|---|--- 2026-05-06 02:17:44+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3ml5n4hflr42s...

CVE-2022-42509

In CallDialReqData::encode of callreqdata.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

HPE Issues Critical Security Patches for Aruba Access Point Vulnerabilities

Hewlett Packard Enterprise HPE has released security updates to address multiple vulnerabilities impacting Aruba Networking Access Point products, including two critical bugs that could result in unauthenticated command execution. The flaws affect Access Points running Instant AOS-8 and AOS-10 -...

CVE-2024-42509 Unauthenticated Command Injection Vulnerability in the CLI Service Accessed by the PAPI Protocol

Command injection vulnerability in the underlying CLI service could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's Access Point management protocol UDP port 8211. Successful exploitation of this vulnerability results in the ability ...

CVE-2024-42509 Unauthenticated Command Injection Vulnerability in the CLI Service Accessed by the PAPI Protocol

Command injection vulnerability in the underlying CLI service could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's Access Point management protocol UDP port 8211. Successful exploitation of this vulnerability results in the ability ...

CVE-2024-42509

ArubaOS/vulnerable Aruba Access Point line affected by CVE-2024-42509, a command-injection in the CLI service that enables unauthenticated remote code execution via PAPI UDP port 8211. Public reports consistently describe this as a high-severity, remote attacker–controlled code execution risk on ...

CVE-2023-42509

creationtimestamp| type| source ---|---|--- 2024-03-07 15:26:12+00:00| seen| https://t.me/ctinow/202477 2024-03-07 15:32:10+00:00| seen| https://t.me/ctinow/202480...

CVE-2023-42509

JFrog Artifactory later than version 7.17.4 but prior to version 7.77.0 is vulnerable to an issue whereby a sequence of improperly handled exceptions in repository configuration initialization steps may lead to exposure of sensitive data...

CVE-2023-42509 JFrog Artifactory Sensitive Data Leakage in Repository configuration process

JFrog Artifactory later than version 7.17.4 but prior to version 7.77.0 is vulnerable to an issue whereby a sequence of improperly handled exceptions in repository configuration initialization steps may lead to exposure of sensitive data...

CVE-2023-42509

JFrog Artifactory versions >7.17.4 and

CVE-2023-42509 JFrog Artifactory Sensitive Data Leakage in Repository configuration process

JFrog Artifactory later than version 7.17.4 but prior to version 7.77.0 is vulnerable to an issue whereby a sequence of improperly handled exceptions in repository configuration initialization steps may lead to exposure of sensitive data...

CVE-2022-42509

creationtimestamp| type| source ---|---|--- 2022-12-16 18:37:33+00:00| seen| https://t.me/cibsecurity/54732...

CVE-2022-42509

In CallDialReqData::encode of callreqdata.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

CVE-2022-42509

CVE-2022-42509 affects the Android kernel component in the function CallDialReqData::encode (callreqdata.cpp). The issue is described as an out-of-bounds write caused by a missing bounds check, which could enable a local escalation of privilege with System execution privileges required. Exploitat...