CVE-2024-42503

Summary

CVE-2024-42503 is an authenticated command execution vulnerability affecting various versions of ArubaOS, allowing attackers to execute arbitrary commands as a privileged user on the underlying operating system. The vulnerability has a high base score of 7.2 and is rated with a low attack complexity, indicating that successful exploitation could lead to severe impacts on confidentiality, integrity, and availability. Organizations utilizing the affected products should apply security patches as outlined in HPE's advisory to mitigate this risk. Failure to address this vulnerability could result in significant security breaches and unauthorized access to sensitive systems. Further details can be found in the official HPE support documentation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.