CVE-2024-47460

Summary

CVE-2024-47460 is a command injection vulnerability affecting the CLI service in certain Aruba access points. Hackers can exploit this weakness by sending maliciously crafted packets to the PAPI (Aruba's Access Point management protocol) UDP port (8211). Successfully exploiting this vulnerability grants unauthenticated attackers the ability to execute arbitrary code as a privileged user on the underlying operating system. This poses a significant risk, as it could lead to unauthorized system access, data theft, or other malicious activities. It is recommended that affected organizations apply the necessary patches to mitigate this risk and secure their networks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.