CVE-2023-45616

There is a buffer overflow vulnerability in the underlying AirWave client service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's access point management protocol UDP port 8211. Successful exploitation of this vulnerabilit...

EUVD-2023-26899

Malicious code in bioql PyPI...

CVE-2024-31475

There is an arbitrary file deletion vulnerability in the Central Communications service accessed by PAPI Aruba's access point management protocol. Successful exploitation of this vulnerability results in the ability to delete arbitrary files on the underlying operating system, which could lead to...

CVE-2024-42507

Command injection vulnerabilities in the underlying CLI service could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's Access Point management protocol UDP port 8211. Successful exploitation of these vulnerabilities results in the...

CVE-2024-42506

CVE-2024-42506 affects Aruba Networks ArubaOS: command-injection in the underlying CLI service reachable via PAPI UDP port 8211 can allow unauthenticated remote code execution as a privileged OS user. Affected Aruba AP management stack and CLI service are exploitable over the network with low com...

[SECURITY] Fedora 40 Update: hostapd-2.11-1.fc40

hostapd is a user space daemon for access point and authentication servers. It implements IEEE 802.11 access point management, IEEE 802.1X/WPA/WPA2/EAP Authenticators and RADIUS authentication server. hostapd is designed to be a "daemon" program that runs in the back-ground and acts as the backen...

CVE-2024-31472

There are command injection vulnerabilities in the underlying Soft AP Daemon service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's Access Point management protocol UDP port 8211. Successful exploitation of these...

CVE-2024-31469

There are buffer overflow vulnerabilities in the underlying Central Communications service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's Access Point management protocol UDP port 8211. Successful exploitation of these...

CVE-2024-31475

CVE-2024-31475 affects ArubaOS/InstantOS with an arbitrary file deletion vulnerability in the Central Communications service accessed via PAPI. The issue allows deletion of arbitrary files on the underlying OS, impacting availability and integrity; CVSS 3.1 base score 8.2 (HIGH). Remediation (per...

CVE-2024-31474

There is an arbitrary file deletion vulnerability in the CLI service accessed by PAPI Aruba's Access Point management protocol. Successful exploitation of this vulnerability results in the ability to delete arbitrary files on the underlying operating system, which could lead to the ability to...

CVE-2024-31473

There is a command injection vulnerability in the underlying deauthentication service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's Access Point management protocol UDP port 8211. Successful exploitation of this...

CVE-2024-31469

There are buffer overflow vulnerabilities in the underlying Central Communications service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's Access Point management protocol UDP port 8211. Successful exploitation of these...

CVE-2024-31466

CVE-2024-31466 describes unauthenticated buffer-overflow vulnerabilities in the PAPI CLI service used by ArubaOS/InstantOS, exploitable by sending specially crafted UDP packets to port 8211. Successful exploitation could execute arbitrary code with OS privileges. Affected products include ArubaOS...

ArubaOS 8.10.x, 8.11.x, 10.4.x 10.5.x Multiple Vulnerabilities (ARUBA-PSA-2024-004)

The version of ArubaOS installed on the remote host is affected by multiple vulnerabilities: - There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's acces...

CVE-2024-33514

Unauthenticated Denial-of-Service DoS vulnerabilities exist in the AP Management service accessed via the PAPI protocol. Successful exploitation of these vulnerabilities results in the ability to interrupt the normal operation of the affected service...

CVE-2024-26304

There is a buffer overflow vulnerability in the underlying L2/L3 Management service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's access point management protocol UDP port 8211. Successful exploitation of this...

Aruba Networks ArubaOS 安全漏洞

Aruba Networks ArubaOS is an operating system for Aruba Mobility-Defined Networks, including Mobility Controllers and Mobility Access Switches, from Aruba Networks, Inc. A security vulnerability exists in Aruba Networks ArubaOS that originates from an unauthenticated denial of service vulnerabili...

Aruba Networks ArubaOS 安全漏洞

Aruba Networks ArubaOS is an operating system for Aruba Mobility-Defined Networks, including Mobility Controllers and Mobility Access Switches, from Aruba Networks, Inc. A security vulnerability exists in Aruba Networks ArubaOS that originates from an unauthenticated denial of service vulnerabili...

PT-2024-25288 · Unknown · Ap Management Service

Name of the Vulnerable Software and Affected Versions: AP Management service affected versions not specified Description: Unauthenticated Denial-of-Service DoS vulnerabilities exist in the AP Management service accessed via the PAPI protocol. Successful exploitation of these vulnerabilities resul...

PT-2024-25286 · Unknown · Ap Management Service

Name of the Vulnerable Software and Affected Versions: AP Management service affected versions not specified Description: The issue concerns Unauthenticated Denial-of-Service DoS vulnerabilities in the AP Management service accessed via the PAPI protocol. Successful exploitation of these...