CVE-2023-22750

Name of the Vulnerable Software and Affected Versions ArubaOS versions (affected versions not specified)

Description The issue is related to the implementation of the PAPI network protocol in ArubaOS, which fails to properly sanitize data at the management level. This can be exploited by a remote attacker to execute arbitrary code. The vulnerability can be triggered by sending specially crafted packets to the PAPI UDP port (8211), potentially leading to unauthenticated remote code execution. Successful exploitation allows the execution of arbitrary code as a privileged user on the underlying operating system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.