CVE-2023-45615

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Nov 14, 2023

Updated: Nov 21, 2023

CWE ID 120

Summary

CVE-2023-45615 is a buffer overflow vulnerability affecting the underlying CLI service in certain Aruba access points. Maliciously crafted packets sent to the PAPI (Aruba's access point management protocol) UDP port (8211) can lead to unauthenticated remote code execution. Successful exploitation grants attackers the ability to execute arbitrary code as a privileged user on the underlying operating system.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Hp Instantos
Arubanetworks Arubaos

Affected Vendors

Aruba Networks
HP

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s8gzBI
https://www.cve.org/CVERecord?id=CVE-2023-45615
https://nvd.nist.gov/vuln/detail/CVE-2023-45615

Back to Vulnerability Database