Lucene search
HpeVULNRICHMENT:CVE-2024-31478HistoryMay 14, 2024 - 10:32 p.m.
CVE-2024-31478
2024-05-1422:32:51
hpe
github.com
2
cve-2024-31478
unauthenticated
denial-of-service
vulnerabilities
soft ap
papi
protocol
exploitation
interrupt
access point
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
7.1
Confidence
Low
EPSS
0
Percentile
9.0%
SSVC
Exploitation
none
Automatable
yes
Technical Impact
partial
Multiple unauthenticated Denial-of-Service (DoS) vulnerabilities exists in the Soft AP daemon accessed via the PAPI protocol. Successful exploitation of these vulnerabilites result in the ability to interrupt the normal operation of the affected Access Point.
CNA Affected
[
{
"defaultStatus": "affected",
"product": "Aruba InstantOS and Aruba Access Points running ArubaOS 10",
"vendor": "Hewlett Packard Enterprise (HPE)",
"versions": [
{
"status": "affected",
"version": "InstantOS or ArubaOS (access points) 10.5.x.x: 10.5.1.0 and below."
},
{
"status": "affected",
"version": "InstantOS or ArubaOS (access points) 10.4.x.x: 10.4.1.0 and below."
},
{
"status": "affected",
"version": "InstantOS or ArubaOS (access points) 8.11.x.x: 8.11.2.1 and below."
},
{
"status": "affected",
"version": "InstantOS or ArubaOS (access points) 8.10.x.x: 8.10.0.10 and below."
},
{
"status": "affected",
"version": "InstantOS or ArubaOS (access points) 8.6.x.x: 8.6.0.23 and below."
}
]
}
]ADP Affected
[
{
"cpes": [
"cpe:2.3:o:arubanetworks:arubaos:10.5.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "arubaos",
"versions": [
{
"status": "affected",
"version": "10.5.0.0",
"versionType": "custom",
"lessThanOrEqual": "10.5.1.0"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:arubanetworks:arubaos:10.4.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "arubaos",
"versions": [
{
"status": "affected",
"version": "10.4.0.0",
"versionType": "custom",
"lessThanOrEqual": "10.4.1.0"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:arubanetworks:instant:8.10.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "instant",
"versions": [
{
"status": "affected",
"version": "8.10.0.0",
"versionType": "custom",
"lessThanOrEqual": "8.10.0.10"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:arubanetworks:instant:8.11.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "instant",
"versions": [
{
"status": "affected",
"version": "8.11.0.0",
"versionType": "custom",
"lessThanOrEqual": "8.11.2.1"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:arubanetworks:instant:8.6.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "instant",
"versions": [
{
"status": "affected",
"version": "8.6.0.0",
"versionType": "custom",
"lessThanOrEqual": "8.6.0.23"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:arubanetworks:arubaos:10.3.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "arubaos",
"versions": [
{
"status": "affected",
"version": "10.3.0.0",
"lessThan": "10.4.0.0",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:arubanetworks:instant:8.9.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "instant",
"versions": [
{
"status": "affected",
"version": "8.9.0.0",
"lessThan": "8.10.0.0",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:arubanetworks:instant:8.8.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "instant",
"versions": [
{
"status": "affected",
"version": "8.8.0.0",
"lessThan": "8.9.0.0",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:arubanetworks:instant:8.5.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "instant",
"versions": [
{
"status": "affected",
"version": "8.5.0.0",
"lessThan": "8.6.0.0",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:arubanetworks:instant:8.7.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "instant",
"versions": [
{
"status": "affected",
"version": "8.7.0.0",
"lessThan": "8.8.0.0",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:arubanetworks:instant:8.4.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "instant",
"versions": [
{
"status": "affected",
"version": "8.4.0.0",
"lessThan": "8.5.0.0",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:arubanetworks:instant:6.5.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "instant",
"versions": [
{
"status": "affected",
"version": "6.5.0.0",
"lessThan": "6.6.0.0",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:arubanetworks:instant:6.4.0.0:*:*:*:*:*:*:*"
],
"vendor": "arubanetworks",
"product": "instant",
"versions": [
{
"status": "affected",
"version": "6.4.0.0",
"lessThan": "6.5.0.0",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
}
]Related
cve
cve
CVE-2024-31478
2024-05-14 23:15:11
cvelist
cvelist
CVE-2024-31478
2024-05-14 22:32:51
nvd
nvd
CVE-2024-31478
2024-05-14 23:15:11
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
7.1
Confidence
Low
EPSS
0
Percentile
9.0%
SSVC
Exploitation
none
Automatable
yes
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-31478