91 matches found
CVE-2024-31480
Unauthenticated Denial of Service DoS vulnerabilities exist in the CLI service accessed via the PAPI protocol. Successful exploitation of these vulnerabilities result in the ability to interrupt the normal operation of the affected service...
CVE-2024-31480
Unauthenticated Denial of Service DoS vulnerabilities exist in the CLI service accessed via the PAPI protocol. Successful exploitation of these vulnerabilities result in the ability to interrupt the normal operation of the affected service...
CVE-2024-31474
There is an arbitrary file deletion vulnerability in the CLI service accessed by PAPI Aruba's Access Point management protocol. Successful exploitation of this vulnerability results in the ability to delete arbitrary files on the underlying operating system, which could lead to the ability to...
CVE-2024-31474
There is an arbitrary file deletion vulnerability in the CLI service accessed by PAPI Aruba's Access Point management protocol. Successful exploitation of this vulnerability results in the ability to delete arbitrary files on the underlying operating system, which could lead to the ability to...
CVE-2024-31467
ArubaOS/InstantOS vulnerabilities exist in the PAPI CLI service via unauthenticated buffer overflow on UDP port 8211, enabling remote code execution with privileges on the underlying OS. Attack requires sending specially crafted packets to the PAPI UDP port; exploitation status is not consistentl...
CVE-2024-31467 Unauthenticated Buffer Overflow Vulnerabilities in CLI Service Accessed by the PAPI Protocol
There are buffer overflow vulnerabilities in the underlying CLI service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's Access Point management protocol UDP port 8211. Successful exploitation of these vulnerabilities resul...
CVE-2024-31466
CVE-2024-31466 describes unauthenticated buffer-overflow vulnerabilities in the PAPI CLI service used by ArubaOS/InstantOS, exploitable by sending specially crafted UDP packets to port 8211. Successful exploitation could execute arbitrary code with OS privileges. Affected products include ArubaOS...
PT-2024-24106 · Aruba · Aruba Access Point
Name of the Vulnerable Software and Affected Versions: Aruba Access Point affected versions not specified Description: The issue concerns an arbitrary file deletion vulnerability in the CLI service accessed by PAPI, which is Aruba's Access Point management protocol. Successful exploitation of thi...
Aruba Networks ArubaOS 和 InstantOS 安全漏洞
Aruba Networks ArubaOS and Aruba Networks InstantOS are both products of Aruba Networks, Inc.Aruba Networks ArubaOS is an operating system for Aruba Mobility-Defined Networks, including Mobility Controllers and Mobility Access Switches. Aruba Networks InstantOS is an Arch Linux-based distribution...
PT-2024-24098 · Aruba · Aruba Access Point
Name of the Vulnerable Software and Affected Versions: Aruba Access Point versions affected versions not specified Description: The issue concerns buffer overflow vulnerabilities in the underlying CLI service. These vulnerabilities could lead to unauthenticated remote code execution by sending...
PT-2024-24097 · Aruba · Aruba Access Point
Name of the Vulnerable Software and Affected Versions: Aruba Access Point affected versions not specified Description: The issue is related to buffer overflow vulnerabilities in the underlying CLI service. These vulnerabilities could lead to unauthenticated remote code execution by sending...
Aruba Networks ArubaOS 和 InstantOS 安全漏洞
Aruba Networks ArubaOS and Aruba Networks InstantOS are both products of Aruba Networks, Inc.Aruba Networks ArubaOS is an operating system for Aruba Mobility-Defined Networks, including Mobility Controllers and Mobility Access Switches. Aruba Networks InstantOS is an Arch Linux-based distribution...
Aruba Networks ArubaOS 和 InstantOS 安全漏洞
Aruba Networks ArubaOS and Aruba Networks InstantOS are both products of Aruba Networks, Inc.Aruba Networks ArubaOS is an operating system for Aruba Mobility-Defined Networks, including Mobility Controllers and Mobility Access Switches. Aruba Networks InstantOS is an Arch Linux-based distribution...
CVE-2023-44415
D-Link Multiple Routers cli Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-1260 and DIR-2150 routers. Authentication is required to exploit this vulnerability. The specif...
CVE-2023-35724
D-Link DAP-2622 Telnet CLI Use of Hardcoded Credentials Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specif...
CVE-2023-35724
D-Link DAP-2622 Telnet CLI Use of Hardcoded Credentials Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The specif...
CVE-2023-34284
NETGEAR RAX30 Use of Hard-coded Credentials Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR RAX30 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists...
CVE-2023-34284
NETGEAR RAX30 Use of Hard-coded Credentials Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR RAX30 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists...
CVE-2023-34284
CVE-2023-34284 affects NETGEAR RAX30 routers. The vulnerability is caused by a hard-coded user account in the system configuration that can be used to access the CLI service as a low-privileged user, allowing network-adjacent attackers to bypass authentication without any user interaction. The is...
CVE-2023-34284 NETGEAR RAX30 Use of Hard-coded Credentials Authentication Bypass Vulnerability
NETGEAR RAX30 Use of Hard-coded Credentials Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR RAX30 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists...