Vulnerabilities > HP > Instantos

DATE CVE VULNERABILITY TITLE RISK
2023-11-14 CVE-2023-45616 Classic Buffer Overflow vulnerability in multiple products
There is a buffer overflow vulnerability in the underlying AirWave client service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point management protocol) UDP port (8211).
network
low complexity
arubanetworks hp CWE-120
critical
 9.8
9.8
2023-11-14 CVE-2023-45617 There are arbitrary file deletion vulnerabilities in the CLI service accessed by PAPI (Aruba's access point management protocol).
network
low complexity
arubanetworks hp
8.2
8.2
2023-11-14 CVE-2023-45618 There are arbitrary file deletion vulnerabilities in the AirWave client service accessed by PAPI (Aruba's access point management protocol).
network
low complexity
arubanetworks hp
8.2
8.2
2023-11-14 CVE-2023-45619 There is an arbitrary file deletion vulnerability in the RSSI service accessed by PAPI (Aruba's access point management protocol).
network
low complexity
arubanetworks hp
8.2
8.2
2023-11-14 CVE-2023-45620 Unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the CLI service accessed via the PAPI protocol.
network
low complexity
arubanetworks hp
7.5
7.5
2023-11-14 CVE-2023-45621 Unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the CLI service accessed via the PAPI protocol.
network
low complexity
arubanetworks hp
7.5
7.5
2023-11-14 CVE-2023-45622 Unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the BLE daemon service accessed via the PAPI protocol.
network
low complexity
arubanetworks hp
7.5
7.5
2023-11-14 CVE-2023-45623 Unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the Wi-Fi Uplink service accessed via the PAPI protocol.
network
low complexity
arubanetworks hp
7.5
7.5
2023-11-14 CVE-2023-45624 An unauthenticated Denial-of-Service (DoS) vulnerability exists in the soft ap daemon accessed via the PAPI protocol.
network
low complexity
arubanetworks hp
7.5
7.5
2023-11-14 CVE-2023-45625 Command Injection vulnerability in multiple products
Multiple authenticated command injection vulnerabilities exist in the command line interface.
network
low complexity
arubanetworks hp CWE-77
7.2
7.2