CVE-2024-31466

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published May 14, 2024

Updated: Jul 3, 2024

CWE ID 121

Summary

CVE-2024-31466 represents a critical buffer overflow vulnerability affecting the CLI service in certain Aruba access points. The flaw, which resides in the PAPI (Aruba's Access Point management protocol) UDP port (8211), can be exploited remotely without authentication. Successful exploitation results in unauthorized execution of arbitrary code with elevated privileges on the underlying operating system. Attackers can send specially crafted packets to take advantage of this vulnerability, potentially leading to significant security risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/v7hMTn
https://www.cve.org/CVERecord?id=CVE-2024-31466
https://nvd.nist.gov/vuln/detail/CVE-2024-31466

Back to Vulnerability Database

CVE-2024-31466

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations