CVE-2024-42509 – Aruba Command Injection Remote Code Execution

11月 6, 2024
12:16 am

CVE ID : CVE-2024-42509

Published : Nov. 5, 2024, 11:15 p.m. | 1 hour, 1 minute ago

Description : Command injection vulnerability in the underlying CLI service could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba’s Access Point management protocol) UDP port (8211). Successful exploitation of this vulnerability results in the ability to execute arbitrary code as a privileged user on the underlying operating system.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-42509 – Aruba Command Injection Remote Code Execution

Elvescore.io

Recent Posts

CVE-2024-12947 – Codezips Hospital Management System SQL Injection Vulnerability

CVE-2024-12948 – Travel Management System Travel SQL Injection

CVE-2024-47151 – Honor File Writing Code Execution Vulnerability

CVE-2024-47156 – Honor Information Leak Vulnerability

CVE-2024-12945 – Simple Car Rental System SQL Injection

CVE-2024-12946 – “1000 Projects Attendance Tracking Management System SQL Injection Vulnerability”

CVE-2024-42509 – Aruba Command Injection Remote Code Execution

CVE-2024-42509 – Aruba Command Injection Remote Code Execution