CVE-2023-45616

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Nov 14, 2023

Updated: Nov 21, 2023

CWE ID 120

Summary

CVE-2023-45616 is a buffer overflow vulnerability affecting the AirWave client service. Maliciously crafted packets targeted at the PAPI (Aruba's access point management protocol) UDP port (8211) can trigger the buffer overflow, enabling unauthenticated remote code execution. Successfully exploiting this vulnerability grants an attacker the ability to execute arbitrary code with privileged user access on the underlying operating system.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Hp Instantos
Arubanetworks Arubaos

Affected Vendors

Aruba Networks
HP

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s8gYW9
https://www.cve.org/CVERecord?id=CVE-2023-45616
https://nvd.nist.gov/vuln/detail/CVE-2023-45616

Back to Vulnerability Database