CVE-2023-22779
Unauthenticated Buffer Overflow Vulnerabilities in Services Accessed by the PAPI Protocol
In short
A buffer overflow vulnerability in Aruba's PAPI protocol allows attackers to send malicious packets to port 8211 without authentication and gain full control of access points by executing arbitrary code. This is critical because it requires no login and affects the core management system.
Technical detail
Unauthenticated buffer overflow in PAPI UDP service (port 8211) permits remote code execution with elevated privileges through specially crafted packets. No authentication is required; successful exploitation grants arbitrary code execution on the underlying OS.
Summary generated and translated by AI from the official description.
There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point management protocol) UDP port (8211). Successful exploitation of these vulnerabilities result in the ability to execute arbitrary code as a privileged user on the underlying operating system.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
Hewlett Packard Enterprise (HPE) · Aruba Access Points running InstantOS and ArubaOS 10Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →