{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-31467", "assignerOrgId": "eb103674-0d28-4225-80f8-39fb86215de0", "state": "PUBLISHED", "assignerShortName": "hpe", "dateReserved": "2024-04-03T21:21:22.896Z", "datePublished": "2024-05-14T22:08:51.360Z", "dateUpdated": "2024-08-02T01:52:57.152Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "affected", "product": "Aruba InstantOS and Aruba Access Points running ArubaOS 10", "vendor": "Hewlett Packard Enterprise (HPE)", "versions": [{"status": "affected", "version": "InstantOS or ArubaOS (access points) 10.5.x.x: 10.5.1.0 and below."}, {"status": "affected", "version": "InstantOS or ArubaOS (access points) 10.4.x.x: 10.4.1.0 and below."}, {"status": "affected", "version": "InstantOS or ArubaOS (access points) 8.11.x.x: 8.11.2.1 and below."}, {"status": "affected", "version": "InstantOS or ArubaOS (access points) 8.10.x.x: 8.10.0.10 and below."}, {"status": "affected", "version": "InstantOS or ArubaOS (access points) 8.6.x.x: 8.6.0.23 and below."}]}], "credits": [{"lang": "en", "type": "reporter", "user": "00000000-0000-4000-9000-000000000000", "value": "Erik De Jong (bugcrowd.com/erikdejong)"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>There are buffer overflow vulnerabilities in the underlying CLI service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's Access Point management protocol) UDP port (8211). Successful exploitation of these vulnerabilities result in the ability to execute arbitrary code as a privileged user on the underlying operating system.</p>"}], "value": "There are buffer overflow vulnerabilities in the underlying CLI service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's Access Point management protocol) UDP port (8211). Successful exploitation of these vulnerabilities result in the ability to execute arbitrary code as a privileged user on the underlying operating system.\n\n"}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "providerMetadata": {"orgId": "eb103674-0d28-4225-80f8-39fb86215de0", "shortName": "hpe", "dateUpdated": "2024-05-14T22:21:57.974Z"}, "references": [{"url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2024-006.txt"}], "source": {"discovery": "UNKNOWN"}, "title": "Unauthenticated Buffer Overflow Vulnerabilities in CLI Service Accessed by the PAPI Protocol", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-121", "lang": "en", "description": "CWE-121 Stack-based Buffer Overflow"}]}], "affected": [{"vendor": "arubanetworks", "product": "arubaos", "cpes": ["cpe:2.3:o:arubanetworks:arubaos:10.5.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "10.5.0.0", "status": "affected", "lessThanOrEqual": "10.5.1.0", "versionType": "custom"}]}, {"vendor": "arubanetworks", "product": "arubaos", "cpes": ["cpe:2.3:o:arubanetworks:arubaos:10.4.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "10.4.0.0", "status": "affected", "lessThanOrEqual": "10.4.1.0", "versionType": "custom"}]}, {"vendor": "arubanetworks", "product": "instant", "cpes": ["cpe:2.3:o:arubanetworks:instant:8.10.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "8.10.0.0", "status": "affected", "lessThanOrEqual": "8.10.0.10", "versionType": "custom"}]}, {"vendor": "arubanetworks", "product": "instant", "cpes": ["cpe:2.3:o:arubanetworks:instant:8.11.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "8.11.0.0", "status": "affected", "lessThanOrEqual": "8.11.2.1", "versionType": "custom"}]}, {"vendor": "arubanetworks", "product": "instant", "cpes": ["cpe:2.3:o:arubanetworks:instant:8.6.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "8.6.0.0", "status": "affected", "lessThanOrEqual": "8.6.0.23", "versionType": "custom"}]}, {"vendor": "arubanetworks", "product": "arubaos", "cpes": ["cpe:2.3:o:arubanetworks:arubaos:10.3.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "10.3.0.0", "status": "affected", "lessThan": "10.4.0.0", "versionType": "custom"}]}, {"vendor": "arubanetworks", "product": "instant", "cpes": ["cpe:2.3:o:arubanetworks:instant:8.9.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "8.9.0.0", "status": "affected", "lessThan": "8.10.0.0", "versionType": "custom"}]}, {"vendor": "arubanetworks", "product": "instant", "cpes": ["cpe:2.3:o:arubanetworks:instant:8.8.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "8.8.0.0", "status": "affected", "lessThan": "8.9.0.0", "versionType": "custom"}]}, {"vendor": "arubanetworks", "product": "instant", "cpes": ["cpe:2.3:o:arubanetworks:instant:8.5.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "8.5.0.0", "status": "affected", "lessThan": "8.6.0.0", "versionType": "custom"}]}, {"vendor": "arubanetworks", "product": "instant", "cpes": ["cpe:2.3:o:arubanetworks:instant:8.7.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "8.7.0.0", "status": "affected", "lessThan": "8.8.0.0", "versionType": "custom"}]}, {"vendor": "arubanetworks", "product": "instant", "cpes": ["cpe:2.3:o:arubanetworks:instant:8.4.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "8.4.0.0", "status": "affected", "lessThan": "8.5.0.0", "versionType": "custom"}]}, {"vendor": "arubanetworks", "product": "instant", "cpes": ["cpe:2.3:o:arubanetworks:instant:6.5.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "6.5.0.0", "status": "affected", "lessThan": "6.6.0.0", "versionType": "custom"}]}, {"vendor": "arubanetworks", "product": "instant", "cpes": ["cpe:2.3:o:arubanetworks:instant:6.4.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "6.4.0.0", "status": "affected", "lessThan": "6.5.0.0", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-05-17T04:00:29.379593Z", "id": "CVE-2024-31467", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-06T16:50:53.606Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T01:52:57.152Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2024-006.txt", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-31467", "assignerOrgId": "eb103674-0d28-4225-80f8-39fb86215de0", "state": "PUBLISHED", "assignerShortName": "hpe", "dateReserved": "2024-04-03T21:21:22.896Z", "datePublished": "2024-05-14T22:08:51.360Z", "dateUpdated": "2024-06-06T16:50:53.606Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "affected", "product": "Aruba InstantOS and Aruba Access Points running ArubaOS 10", "vendor": "Hewlett Packard Enterprise (HPE)", "versions": [{"status": "affected", "version": "InstantOS or ArubaOS (access points) 10.5.x.x: 10.5.1.0 and below."}, {"status": "affected", "version": "InstantOS or ArubaOS (access points) 10.4.x.x: 10.4.1.0 and below."}, {"status": "affected", "version": "InstantOS or ArubaOS (access points) 8.11.x.x: 8.11.2.1 and below."}, {"status": "affected", "version": "InstantOS or ArubaOS (access points) 8.10.x.x: 8.10.0.10 and below."}, {"status": "affected", "version": "InstantOS or ArubaOS (access points) 8.6.x.x: 8.6.0.23 and below."}]}], "credits": [{"lang": "en", "type": "reporter", "user": "00000000-0000-4000-9000-000000000000", "value": "Erik De Jong (bugcrowd.com/erikdejong)"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>There are buffer overflow vulnerabilities in the underlying CLI service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's Access Point management protocol) UDP port (8211). Successful exploitation of these vulnerabilities result in the ability to execute arbitrary code as a privileged user on the underlying operating system.</p>"}], "value": "There are buffer overflow vulnerabilities in the underlying CLI service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's Access Point management protocol) UDP port (8211). Successful exploitation of these vulnerabilities result in the ability to execute arbitrary code as a privileged user on the underlying operating system.\n\n"}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "providerMetadata": {"orgId": "eb103674-0d28-4225-80f8-39fb86215de0", "shortName": "hpe", "dateUpdated": "2024-05-14T22:21:57.974Z"}, "references": [{"url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2024-006.txt"}], "source": {"discovery": "UNKNOWN"}, "title": "Unauthenticated Buffer Overflow Vulnerabilities in CLI Service Accessed by the PAPI Protocol", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-31467", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-05-17T04:00:29.379593Z"}}}], "affected": [{"cpes": ["cpe:2.3:o:arubanetworks:arubaos:10.5.0.0:*:*:*:*:*:*:*"], "vendor": "arubanetworks", "product": "arubaos", "versions": [{"status": "affected", "version": "10.5.0.0", "versionType": "custom", "lessThanOrEqual": "10.5.1.0"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:arubanetworks:arubaos:10.4.0.0:*:*:*:*:*:*:*"], "vendor": "arubanetworks", "product": "arubaos", "versions": [{"status": "affected", "version": "10.4.0.0", "versionType": "custom", "lessThanOrEqual": "10.4.1.0"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:arubanetworks:instant:8.10.0.0:*:*:*:*:*:*:*"], "vendor": "arubanetworks", "product": "instant", "versions": [{"status": "affected", "version": "8.10.0.0", "versionType": "custom", "lessThanOrEqual": "8.10.0.10"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:arubanetworks:instant:8.11.0.0:*:*:*:*:*:*:*"], "vendor": "arubanetworks", "product": "instant", "versions": [{"status": "affected", "version": "8.11.0.0", "versionType": "custom", "lessThanOrEqual": "8.11.2.1"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:arubanetworks:instant:8.6.0.0:*:*:*:*:*:*:*"], "vendor": "arubanetworks", "product": "instant", "versions": [{"status": "affected", "version": "8.6.0.0", "versionType": "custom", "lessThanOrEqual": "8.6.0.23"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:arubanetworks:arubaos:10.3.0.0:*:*:*:*:*:*:*"], "vendor": "arubanetworks", "product": "arubaos", "versions": [{"status": "affected", "version": "10.3.0.0", "lessThan": "10.4.0.0", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:arubanetworks:instant:8.9.0.0:*:*:*:*:*:*:*"], "vendor": "arubanetworks", "product": "instant", "versions": [{"status": "affected", "version": "8.9.0.0", "lessThan": "8.10.0.0", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:arubanetworks:instant:8.8.0.0:*:*:*:*:*:*:*"], "vendor": "arubanetworks", "product": "instant", "versions": [{"status": "affected", "version": "8.8.0.0", "lessThan": "8.9.0.0", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:arubanetworks:instant:8.5.0.0:*:*:*:*:*:*:*"], "vendor": "arubanetworks", "product": "instant", "versions": [{"status": "affected", "version": "8.5.0.0", "lessThan": "8.6.0.0", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:arubanetworks:instant:8.7.0.0:*:*:*:*:*:*:*"], "vendor": "arubanetworks", "product": "instant", "versions": [{"status": "affected", "version": "8.7.0.0", "lessThan": "8.8.0.0", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:arubanetworks:instant:8.4.0.0:*:*:*:*:*:*:*"], "vendor": "arubanetworks", "product": "instant", "versions": [{"status": "affected", "version": "8.4.0.0", "lessThan": "8.5.0.0", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:arubanetworks:instant:6.5.0.0:*:*:*:*:*:*:*"], "vendor": "arubanetworks", "product": "instant", "versions": [{"status": "affected", "version": "6.5.0.0", "lessThan": "6.6.0.0", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:arubanetworks:instant:6.4.0.0:*:*:*:*:*:*:*"], "vendor": "arubanetworks", "product": "instant", "versions": [{"status": "affected", "version": "6.4.0.0", "lessThan": "6.5.0.0", "versionType": "custom"}], "defaultStatus": "unknown"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-121", "description": "CWE-121 Stack-based Buffer Overflow"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-05-15T13:35:21.164Z"}}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*", "matchCriteriaId": "C22DF47A-ECDC-4FB3-9361-2CE8972F2403", "versionEndExcluding": "10.4.1.1", "versionStartIncluding": "10.3.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*", "matchCriteriaId": "3088AE26-C175-4D22-A550-30B97164D15B", "versionEndExcluding": "10.5.1.1", "versionStartIncluding": "10.5.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:hp:instantos:*:*:*:*:*:*:*:*", "matchCriteriaId": "3EF296DF-98BB-4347-A655-F3046220FFB5", "versionEndExcluding": "8.6.0.24", "versionStartIncluding": "6.4.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:hp:instantos:*:*:*:*:*:*:*:*", "matchCriteriaId": "5D7CDA65-CB99-4A70-9E12-B38BC7A69F1A", "versionEndExcluding": "8.10.0.11", "versionStartIncluding": "8.7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "There are buffer overflow vulnerabilities in the underlying CLI service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's Access Point management protocol) UDP port (8211). Successful exploitation of these vulnerabilities result in the ability to execute arbitrary code as a privileged user on the underlying operating system.\n\n"}, {"lang": "es", "value": "Existen vulnerabilidades de desbordamiento de b\u00fafer en el servicio CLI subyacente que podr\u00edan provocar la ejecuci\u00f3n remota de c\u00f3digo no autenticado mediante el env\u00edo de paquetes especialmente manipulados destinados al puerto UDP (8211) PAPI (protocolo de administraci\u00f3n de puntos de acceso de Aruba). La explotaci\u00f3n exitosa de estas vulnerabilidades da como resultado la capacidad de ejecutar c\u00f3digo arbitrario como usuario privilegiado en el sistema operativo subyacente."}], "id": "CVE-2024-31467", "lastModified": "2025-06-05T15:25:12.077", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "security-alert@hpe.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-05-14T23:15:08.250", "references": [{"source": "security-alert@hpe.com", "tags": ["Vendor Advisory", "Broken Link"], "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2024-006.txt"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory", "Broken Link"], "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2024-006.txt"}], "sourceIdentifier": "security-alert@hpe.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-121"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}