An authenticated Remote Code Execution (RCE) vulnerability exists in the AirWave CLI. Successful exploitation of this vulnerability could allow a remote authenticated threat actor to run arbitrary commands as a privileged user on the underlying host.
Metrics
Affected Vendors & Products
References
History
Wed, 11 Dec 2024 14:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-78 | |
Metrics |
ssvc
|
Tue, 10 Dec 2024 18:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | An authenticated Remote Code Execution (RCE) vulnerability exists in the AirWave CLI. Successful exploitation of this vulnerability could allow a remote authenticated threat actor to run arbitrary commands as a privileged user on the underlying host. | |
Title | Authenticated Remote Code Execution (RCE) in HPE Aruba Networking AirWave Management Platform | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: hpe
Published: 2024-12-10T18:23:19.858Z
Updated: 2024-12-11T14:04:56.167Z
Reserved: 2024-11-26T21:55:16.390Z
Link: CVE-2024-54008
Vulnrichment
Updated: 2024-12-11T14:04:28.074Z
NVD
Status : Received
Published: 2024-12-10T19:15:30.900
Modified: 2024-12-11T14:15:19.713
Link: CVE-2024-54008
Redhat
No data.