CVE-2022-37885

There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba Networks AP management protocol UDP port 8211. Successful exploitation of these vulnerabilities result...

CVE-2022-37886

There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba Networks AP management protocol UDP port 8211. Successful exploitation of these vulnerabilities result...

EUVD-2023-26901

Malicious code in bioql PyPI...

EUVD-2022-40493

Malicious code in bioql PyPI...

EUVD-2023-26898

Malicious code in bioql PyPI...

EUVD-2024-29348

Malicious code in bioql PyPI...

EUVD-2024-29351

Malicious code in bioql PyPI...

CVE-2022-37887

There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba Networks AP management protocol UDP port 8211. Successful exploitation of these vulnerabilities result...

CVE-2024-33511

There is a buffer overflow vulnerability in the underlying Automatic Reporting service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's access point management protocol UDP port 8211. Successful exploitation of this...

CVE-2024-31468

There are buffer overflow vulnerabilities in the underlying Central Communications service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's Access Point management protocol UDP port 8211. Successful exploitation of these...

CVE-2024-47460

CVE-2024-47460 is an unauthenticated command-injection vulnerability in ArubaOS/Aruba Instant CLI service (PAPI) exposed via UDP port 8211. Exploitation can lead to remote code execution with system-privileged rights. Public references indicate the flaw affects ArubaOS/Instant AOS-8 and AOS-10 de...

CVE-2024-31470

There is a buffer overflow vulnerability in the underlying SAE Simultaneous Authentication of Equals service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's Access Point management protocol UDP port 8211. Successful...

CVE-2024-31470

CVE-2024-31470 describes a buffer overflow in Aruba SAE service accessible via PAPI UDP port 8211, enabling unauthenticated remote code execution with SYSTEM-level privileges on ArubaOS/InstantOS. Affected components include the SAE service and related PAPI protocol handling within ArubaOS (Aruba...

CVE-2024-31469

The CVE-2024-31469 issue affects Aruba’s Central Communications service (PAPI UDP port 8211) and enables buffer overflow conditions that could allow unauthenticated remote code execution, resulting in arbitrary code execution as a privileged OS user. Available connected documents confirm the unde...

CVE-2024-31468

CVE-2024-31468 impacts ArubaOS/Aruba InstantOS Central Communications Service. A buffer overflow in the PAPI UDP port 8211 allows unauthenticated remote code execution, enabling arbitrary code as a privileged OS user. Affected product class is Aruba Central/ArubaOS components handling the Central...

CVE-2024-31467

ArubaOS/InstantOS vulnerabilities exist in the PAPI CLI service via unauthenticated buffer overflow on UDP port 8211, enabling remote code execution with privileges on the underlying OS. Attack requires sending specially crafted packets to the PAPI UDP port; exploitation status is not consistentl...

PT-2024-24104 · Aruba · Aruba Instantos/Arubaos

Name of the Vulnerable Software and Affected Versions: Aruba InstantOS/ArubaOS versions prior to 10.5.1.0 Description: The issue is related to command injection vulnerabilities in the Soft AP Daemon service, which can lead to unauthenticated remote code execution. This is achieved by sending...

CVE-2024-26304

There is a buffer overflow vulnerability in the underlying L2/L3 Management service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's access point management protocol UDP port 8211. Successful exploitation of this...

Siemens Scalance W1750D Buffer Copy without Checking Size of Input (CVE-2023-45616)

There is a buffer overflow vulnerability in the underlying AirWave client service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's access point management protocol UDP port 8211. Successful exploitation of this vulnerabilit...

CVE-2023-22786

There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's access point management protocol UDP port 8211. Successful exploitation of these vulnerabilities...