Critical severity9.8NVD Advisory· Published Nov 5, 2024· Updated Apr 15, 2026
CVE-2024-42509
CVE-2024-42509
Description
Command injection vulnerability in the underlying CLI service could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's Access Point management protocol) UDP port (8211). Successful exploitation of this vulnerability results in the ability to execute arbitrary code as a privileged user on the underlying operating system.
Affected products
1Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.