Lucene search
HpeVULNRICHMENT:CVE-2024-26304HistoryMay 01, 2024 - 2:43 p.m.
CVE-2024-26304
2024-05-0114:43:12
hpe
github.com
4
buffer overflow
aruba
l2/l3 management service
unauthenticated
remote code execution
papi
udp port 8211
exploitation
arbitrary code
privileged user
operating system
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
8.7
Confidence
Low
SSVC
Exploitation
none
Automatable
yes
Technical Impact
total
There is a buffer overflow vulnerability in the underlying L2/L3 Management service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba’s access point management protocol) UDP port (8211). Successful exploitation of this vulnerability results in the ability to execute arbitrary code as a privileged user on the underlying operating system.
CNA Affected
[
{
"vendor": "Hewlett Packard Enterprise (HPE)",
"product": "Aruba Mobility Conductor (formerly Mobility Master); Aruba Mobility Controllers; WLAN Gateways and SD-WAN Gateways managed by Aruba Central",
"versions": [
{
"status": "affected",
"version": "ArubaOS 10.5.x.x: 10.5.1.0 and below"
},
{
"status": "affected",
"version": "ArubaOS 10.4.x.x: 10.4.1.0 and below"
},
{
"status": "affected",
"version": "ArubaOS 8.11.x.x: 8.11.2.1 and below"
},
{
"status": "affected",
"version": "ArubaOS 8.10.x.x: 8.10.0.10 and below"
}
],
"defaultStatus": "affected"
}
]ADP Affected
[
{
"cpes": [
"cpe:2.3:o:arubanetworks:arubaos:8.10.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "arubaos",
"versions": [
{
"status": "affected",
"version": "8.10.0.0",
"lessThan": "8.10.0.10",
"versionType": "custom"
}
],
"defaultStatus": "affected"
},
{
"cpes": [
"cpe:2.3:o:arubanetworks:arubaos:10.5.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "arubaos",
"versions": [
{
"status": "affected",
"version": "10.5.0.0",
"lessThan": "10.5.1.0",
"versionType": "custom"
}
],
"defaultStatus": "affected"
},
{
"cpes": [
"cpe:2.3:o:arubanetworks:arubaos:10.4.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "arubaos",
"versions": [
{
"status": "affected",
"version": "10.4.0.0",
"lessThan": "10.4.1.0",
"versionType": "custom"
}
],
"defaultStatus": "affected"
},
{
"cpes": [
"cpe:2.3:o:arubanetworks:arubaos:8.11.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "arubaos",
"versions": [
{
"status": "affected",
"version": "8.11.0.0",
"lessThan": "8.11.2.1",
"versionType": "custom"
}
],
"defaultStatus": "affected"
},
{
"cpes": [
"cpe:2.3:o:arubanetworks:arubaos:10.3.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "arubaos",
"versions": [
{
"status": "affected",
"version": "10.3.0.0",
"lessThan": "10.4.0.0",
"versionType": "custom"
}
],
"defaultStatus": "affected"
},
{
"cpes": [
"cpe:2.3:o:arubanetworks:arubaos:8.9.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "arubaos",
"versions": [
{
"status": "affected",
"version": "8.9.0.0",
"lessThan": "8.10.0.0",
"versionType": "custom"
}
],
"defaultStatus": "affected"
},
{
"cpes": [
"cpe:2.3:o:arubanetworks:arubaos:8.8.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "arubaos",
"versions": [
{
"status": "affected",
"version": "8.8.0.0",
"lessThan": "8.9.0.0",
"versionType": "custom"
}
],
"defaultStatus": "affected"
},
{
"cpes": [
"cpe:2.3:o:arubanetworks:arubaos:8.7.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "arubaos",
"versions": [
{
"status": "affected",
"version": "8.7.0.0",
"lessThan": "8.8.0.0",
"versionType": "custom"
}
],
"defaultStatus": "affected"
},
{
"cpes": [
"cpe:2.3:o:arubanetworks:arubaos:8.6.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "arubaos",
"versions": [
{
"status": "affected",
"version": "8.6.0.0",
"lessThan": "8.7.0.0",
"versionType": "custom"
}
],
"defaultStatus": "affected"
},
{
"cpes": [
"cpe:2.3:o:arubanetworks:arubaos:6.5.4.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "arubaos",
"versions": [
{
"status": "affected",
"version": "6.5.4.0",
"lessThan": "6.5.5.0",
"versionType": "custom"
}
],
"defaultStatus": "affected"
},
{
"cpes": [
"cpe:2.3:a:arubanetworks:sd-wan:8.7.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "sd-wan",
"versions": [
{
"status": "affected",
"version": "8.7.0.0",
"lessThan": "*",
"versionType": "custom"
}
],
"defaultStatus": "affected"
},
{
"cpes": [
"cpe:2.3:a:arubanetworks:sd-wan:8.6.0.4:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "sd-wan",
"versions": [
{
"status": "affected",
"version": "8.6.0.4",
"lessThan": "*",
"versionType": "custom"
}
],
"defaultStatus": "affected"
}
]Related
cvelist
cvelist
CVE-2024-26304
2024-05-01 14:43:12
nvd
nvd
CVE-2024-26304
2024-05-01 15:15:14
cve
cve
CVE-2024-26304
2024-05-01 15:15:14
githubexploit
githubexploit
Exploit for CVE-2024-26304
2024-05-04 10:09:24
thn
thn
Four Critical Vulnerabilities Expose HPE Aruba Devices to RCE Attacks
2024-05-03 04:50:00
nessus
nessus
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
8.7
Confidence
Low
SSVC
Exploitation
none
Automatable
yes
Technical Impact
total
Related for VULNRICHMENT:CVE-2024-26304