CVE-2024-31472

Name of the Vulnerable Software and Affected Versions Aruba InstantOS/ArubaOS versions prior to 10.5.1.0

Description The issue is related to command injection vulnerabilities in the Soft AP Daemon service, which can lead to unauthenticated remote code execution. This is achieved by sending specially crafted packets to the PAPI UDP port (8211). Successful exploitation allows the execution of arbitrary code as a privileged user on the underlying operating system.

Recommendations For versions prior to 10.5.1.0, upgrade the affected components immediately to mitigate the risks. As a temporary workaround, consider restricting access to the PAPI UDP port (8211) to minimize the risk of exploitation.