CVE-2024-31472 | Aruba InstantOS/ArubaOS PAPI command injection (ARUBA-PSA-2024-006)

Posted by Angelo Barbosa | May 15, 2024 | CVE

A vulnerability was found in Aruba InstantOS and ArubaOS up to 8.6.0.23/8.10.0.10/8.11.2.1/10.4.1.0/10.5.1.0. It has been classified as very critical. This affects an unknown part of the component PAPI. The manipulation leads to command injection.

This vulnerability is uniquely identified as CVE-2024-31472. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-31472 | Aruba InstantOS/ArubaOS PAPI command injection (ARUBA-PSA-2024-006)

Related Posts

CVE-2024-41184 | keepalived up to 2.3.1 fglobal_parser.c vrrp_ipsets_handler integer overflow (Issue 2447)

CVE-2024-9585 | Image Map Pro Plugin up to 6.0.20 on WordPress cross site scripting

CVE-2023-50168 | Pegasystems Pega Platform up to 8.8.4 PDF Generation xml external entity reference

CVE-2024-37087 | VMware vCenter Server/Cloud Foundation denial of service