Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

343 matches found

Positive Technologies
Positive Technologiesadded 2023/02/28 12:0 a.m.3 views

PT-2023-1679 · Aruba · Arubaos

Name of the Vulnerable Software and Affected Versions: ArubaOS versions affected versions not specified Description: The issue is related to buffer overflow vulnerabilities in multiple underlying operating system processes. These vulnerabilities could lead to unauthenticated remote code execution...

9.8CVSS9.8AI score0.01073EPSS
Exploits0References8
Positive Technologies
Positive Technologiesadded 2023/02/28 12:0 a.m.3 views

PT-2023-1676 · Aruba · Arubaos

Name of the Vulnerable Software and Affected Versions: ArubaOS versions affected versions not specified Description: The issue is related to buffer overflow vulnerabilities in multiple underlying operating system processes. These vulnerabilities could lead to unauthenticated remote code execution...

9.8CVSS9.8AI score0.01073EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2023/02/28 12:0 a.m.4 views

PT-2023-1675 · Aruba · Arubaos

Name of the Vulnerable Software and Affected Versions: ArubaOS versions affected versions not specified Description: The issue is related to a buffer overflow vulnerability in the implementation of the PAPI protocol in ArubaOS. This vulnerability can be exploited by sending specially crafted...

9.8CVSS9.4AI score0.01073EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2023/02/28 12:0 a.m.3 views

PT-2023-1678 · Aruba · Arubaos

Name of the Vulnerable Software and Affected Versions: ArubaOS affected versions not specified Description: The issue is related to buffer overflow vulnerabilities in multiple underlying operating system processes. These vulnerabilities could lead to unauthenticated remote code execution by sendi...

9.8CVSS9.8AI score0.01073EPSS
Exploits0References7
OSV
OSVadded 2022/12/12 1:15 p.m.2 views

CVE-2022-37897

There is a command injection vulnerability that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba Networks AP management protocol UDP port 8211. Successful exploitation of this vulnerability results in the ability to execute...

9.8CVSS6.6AI score0.01697EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2022/11/03 6:12 p.m.6 views

CVE-2022-37897

There is a command injection vulnerability that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba Networks AP management protocol UDP port 8211. Successful exploitation of this vulnerability results in the ability to execute...

9.8CVSS9.8AI score0.01697EPSS
Exploits0References1
BDU FSTEC
BDU FSTECadded 2022/10/20 12:0 a.m.7 views

The vulnerability of the PAPI network protocol implementation in the Wi-Fi Aruba Instant wireless connectivity deployment application allows a attacker to execute arbitrary code.

The vulnerability of the PAPI protocol implementation for Wi-Fi Aruba Instant wireless connectivity applications lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending specially crafte...

10CVSS8.2AI score0.01634EPSS
Exploits0References5Affected Software2
ATTACKERKB
ATTACKERKBadded 2022/10/07 6:15 p.m.5 views

CVE-2022-37886

There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba Networks AP management protocol UDP port 8211. Successful exploitation of these vulnerabilities result...

9.8CVSS6.9AI score0.01349EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2022/10/07 12:0 a.m.4 views

PT-2022-6029 · Aruba Networks · Aruba Instant +1

Name of the Vulnerable Software and Affected Versions: Aruba InstantOS versions 6.4.4.8 through 4.2.4.20 and below Aruba InstantOS versions 6.5.4.23 and below Aruba InstantOS versions 8.6.0.18 and below Aruba InstantOS versions 8.7.1.9 and below Aruba InstantOS versions 8.10.0.1 and below ArubaOS...

9.8CVSS10AI score0.01539EPSS
Exploits0References7
Prion
Prionadded 2022/10/06 6:16 p.m.26 views

Buffer overflow

There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba Networks AP management protocol UDP port 8211. Successful exploitation of these vulnerabilities result...

7.5CVSS10AI score0.01484EPSS
Exploits0References2Affected Software2
CNVD
CNVDadded 2022/09/29 12:0 a.m.41 views

Aruba Networks ArubaOS and Instant PAPI Protocol Buffer Overflow Vulnerability

ArubaOS is the network operating system for Aruba Mobility Controllers, Mobility Masters, and controller-managed access points APs. instantOS is an Arch Linux-based distribution. aruba networks ArubaOS and Instant PAPI The Aruba Networks ArubaOS and Instant PAPI protocols are vulnerable to a buff...

9.8CVSS6.1AI score0.01349EPSS
Exploits0References1
CNNVD
CNNVDadded 2021/10/07 12:0 a.m.10 views

Aruba Instant 缓冲区错误漏洞

Aruba Instant is a wireless network. Aruba Instant provides the only Wi-Fi solution that is easy to set up.A buffer overflow vulnerability exists in Aruba Instant, which stems from a boundary error when processing PAPI requests sent to port 8211/UDP. A remote attacker could exploit this...

10CVSS9.2AI score0.02332EPSS
Exploits0References7
CNVD
CNVDadded 2021/03/30 12:0 a.m.9 views

Aruba Instant Denial of Service Vulnerability

Aruba Instant is a cloud-hosted controller-less wireless access point. Aruba Instant has a denial of service vulnerability that can be exploited by an attacker to cause a system reboot via the PAPI protocol, which can lead to a denial of service...

7.5CVSS6.7AI score0.01309EPSS
Exploits0References1
CNNVD
CNNVDadded 2021/03/29 12:0 a.m.5 views

Aruba Access Points 输入验证错误漏洞

Aruba Instant is a cloud-hosted controller-less wireless access point. Aruba Instant has a denial of service vulnerability that can be exploited by an attacker to cause a system reboot via the PAPI protocol, which can lead to a denial of service...

7.5CVSS5.7AI score0.01309EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2021/03/09 12:0 a.m.5 views

PT-2021-7452 · Aruba · Aruba Instant

Name of the Vulnerable Software and Affected Versions: Aruba Instant versions 6.4.4.8 through 6.4.4.17 and below Aruba Instant versions 6.5.4.16 and below Aruba Instant versions 8.3.0.12 and below Aruba Instant versions 8.5.0.6 and below Aruba Instant versions 8.6.0.2 and below Description: A...

10CVSS9.8AI score0.02409EPSS
Exploits0References6
OSV
OSVadded 2020/12/11 2:15 a.m.1 views

CVE-2020-24634

An attacker is able to remotely inject arbitrary commands by sending especially crafted packets destined to the PAPI Aruba Networks AP Management protocol UDP port 8211 of access-pointsor controllers in Aruba 9000 Gateway; Aruba 7000 Series Mobility Controllers; Aruba 7200 Series Mobility...

9.8CVSS5.9AI score0.02051EPSS
Exploits0References1
NVD
NVDadded 2020/12/11 2:15 a.m.18 views

CVE-2020-24634

An attacker is able to remotely inject arbitrary commands by sending especially crafted packets destined to the PAPI Aruba Networks AP Management protocol UDP port 8211 of access-pointsor controllers in Aruba 9000 Gateway; Aruba 7000 Series Mobility Controllers; Aruba 7200 Series Mobility...

10CVSS9.6AI score0.02051EPSS
Exploits0References1
OSV
OSVadded 2019/09/13 5:15 p.m.1 views

CVE-2018-7081

A remote code execution vulnerability is present in network-listening components in some versions of ArubaOS. An attacker with the ability to transmit specially-crafted IP traffic to a mobility controller could exploit this vulnerability and cause a process crash or to execute arbitrary code with...

9.8CVSS6.5AI score0.05851EPSS
Exploits1References2
Prion
Prionadded 2019/09/13 5:15 p.m.16 views

Remote code execution

A remote code execution vulnerability is present in network-listening components in some versions of ArubaOS. An attacker with the ability to transmit specially-crafted IP traffic to a mobility controller could exploit this vulnerability and cause a process crash or to execute arbitrary code with...

9.3CVSS9.6AI score0.05851EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2019/09/13 4:49 p.m.21 views

CVE-2018-7081

A remote code execution vulnerability is present in network-listening components in some versions of ArubaOS. An attacker with the ability to transmit specially-crafted IP traffic to a mobility controller could exploit this vulnerability and cause a process crash or to execute arbitrary code with...

9.8AI score0.05851EPSS
Exploits1References2
Rows per page
Query Builder