CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

563 matches found

Positive Technologies•added 2023/02/28 12:0 a.m.•2 views

PT-2023-1679 · Aruba · Arubaos

Name of the Vulnerable Software and Affected Versions: ArubaOS versions affected versions not specified Description: The issue is related to buffer overflow vulnerabilities in multiple underlying operating system processes. These vulnerabilities could lead to unauthenticated remote code execution...

9.8CVSS9.8AI score0.00425EPSS

Exploits0References8

Positive Technologies•added 2023/02/28 12:0 a.m.•3 views

PT-2023-1675 · Aruba · Arubaos

Name of the Vulnerable Software and Affected Versions: ArubaOS versions affected versions not specified Description: The issue is related to a buffer overflow vulnerability in the implementation of the PAPI protocol in ArubaOS. This vulnerability can be exploited by sending specially crafted...

9.8CVSS9.4AI score0.00425EPSS

Exploits0References7

Positive Technologies•added 2023/02/28 12:0 a.m.•2 views

PT-2023-1678 · Aruba · Arubaos

Name of the Vulnerable Software and Affected Versions: ArubaOS affected versions not specified Description: The issue is related to buffer overflow vulnerabilities in multiple underlying operating system processes. These vulnerabilities could lead to unauthenticated remote code execution by sendi...

9.8CVSS9.8AI score0.00425EPSS

Exploits0References7

Positive Technologies•added 2023/02/28 12:0 a.m.•2 views

PT-2023-1676 · Aruba · Arubaos

9.8CVSS9.8AI score0.00425EPSS

Exploits0References7

OSV•added 2022/12/12 1:15 p.m.•2 views

CVE-2022-37897

There is a command injection vulnerability that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba Networks AP management protocol UDP port 8211. Successful exploitation of this vulnerability results in the ability to execute...

9.8CVSS6.6AI score0.0077EPSS

Exploits0References1

Prion•added 2022/12/12 1:15 p.m.•19 views

Command injection

7.5CVSS9.8AI score0.0077EPSS

Exploits0References1Affected Software2

Rockylinux•added 2022/11/15 6:16 a.m.•8 views

papi bug fix and enhancement update

An update is available for papi. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 9.1...

1.9AI score

Exploits0

Rockylinux•added 2022/11/08 6:21 a.m.•13 views

papi and libpfm bug fix and enhancement update

An update is available for libpfm, papi. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux...

2.1AI score

Exploits0

Vulnrichment•added 2022/11/03 6:12 p.m.•4 views

CVE-2022-37897

9.8CVSS9.8AI score0.0077EPSS

Exploits0References1

CVE•added 2022/11/03 6:12 p.m.•73 views

CVE-2022-37897

CVE-2022-37897 describes a command-injection vulnerability in Aruba Networks ArubaOS (AP management protocol PAPI over UDP 8211) that could allow unauthenticated remote code execution as a privileged OS user. The affected component is the ArubaOS/AP management handling of PAPI commands; the under...

9.8CVSS9.7AI score0.0077EPSS

Exploits0References1Affected Software2

Cvelist•added 2022/11/03 6:12 p.m.•19 views

CVE-2022-37897

9.8CVSS9.9AI score0.0077EPSS

Exploits0References1

BDU FSTEC•added 2022/10/20 12:0 a.m.•2 views

The vulnerability of the PAPI network protocol implementation in the Wi-Fi Aruba Instant wireless connectivity deployment application allows a attacker to execute arbitrary code.

The vulnerability of the PAPI protocol implementation for Wi-Fi Aruba Instant wireless connectivity applications lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending specially crafte...

10CVSS8.2AI score0.0071EPSS

Exploits0References5Affected Software2

OSV•added 2022/10/07 6:15 p.m.•3 views

CVE-2022-37887

There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba Networks AP management protocol UDP port 8211. Successful exploitation of these vulnerabilities result...

9.8CVSS6.8AI score0.01152EPSS

Exploits0References2