Buffer Overflow Vulnerability Could Lead to Remote Code Execution
CVE-2024-33512
What is CVE-2024-33512?
A buffer overflow vulnerability exists within the Local User Authentication Database service utilized by Aruba Networks access points. This vulnerability can be exploited by sending specially crafted packets to the PAPI (Aruba’s Access Point Management Protocol) UDP port (8211), enabling an attacker to execute arbitrary code remotely. This exploitation occurs without authentication, posing significant risks to the security and integrity of the affected systems. Organizations using Aruba access points should prioritize applying the necessary patches and mitigating strategies to protect against potential threats.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
Aruba Mobility Conductor (formerly Mobility Master); Aruba Mobility Controllers; WLAN Gateways and SD-WAN Gateways managed by Aruba Central ArubaOS 10.5.x.x: 10.5.1.0 and below
Aruba Mobility Conductor (formerly Mobility Master); Aruba Mobility Controllers; WLAN Gateways and SD-WAN Gateways managed by Aruba Central ArubaOS 10.5.x.x: 10.5.1.0 and below
Aruba Mobility Conductor (formerly Mobility Master); Aruba Mobility Controllers; WLAN Gateways and SD-WAN Gateways managed by Aruba Central ArubaOS 10.4.x.x: 10.4.1.0 and below
References
EPSS Score
22% chance of being exploited in the next 30 days.
CVSS V3.1
Timeline
Vulnerability published
Vulnerability Reserved