CVE-2024-31473 | Aruba InstantOS/ArubaOS PAPI command injection (ARUBA-PSA-2024-006)

Posted by Angelo Barbosa | May 15, 2024 | CVE

A vulnerability was found in Aruba InstantOS and ArubaOS up to 8.6.0.23/8.10.0.10/8.11.2.1/10.4.1.0/10.5.1.0. It has been declared as very critical. This vulnerability affects unknown code of the component PAPI. The manipulation leads to command injection.

This vulnerability was named CVE-2024-31473. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-31473 | Aruba InstantOS/ArubaOS PAPI command injection (ARUBA-PSA-2024-006)

Related Posts

CVE-2024-25625 | Pimcore admin-ui-classic-bundle up to 1.3.3 HTTP Header invitationLinkAction Host injection

CVE-2024-5483 | LearnPress Plugin up to 4.2.6.8 on WordPress JSON API information disclosure

CVE-2024-40605 | Foreground Skin up to 1.42.1 on MediaWiki Sidebar Menu cross site scripting

CVE-2024-9036 | itsourcecode Online Bookstore 1.0 admin_add.php image unrestricted upload