The version of ArubaOS installed on the remote host is affected by multiple vulnerabilities:

  - There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated     remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point management     protocol) UDP port (8211). Successful exploitation of these vulnerabilities result in the ability to execute     arbitrary code as a privileged user on the underlying operating system. (CVE-2024-26305) 

  - There is a buffer overflow vulnerability in the underlying L2/L3 Management service that could lead to     unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access     point management protocol) UDP port (8211). Successful exploitation of this vulnerability results in the            ability to execute arbitrary code as a privileged user on the underlying operating system. (CVE-2024-26304)

  - There is a buffer overflow vulnerability in the underlying Automatic Reporting service that could lead to     unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access     point management protocol) UDP port (8211). Successful exploitation of this vulnerability results in the ability     to execute arbitrary code as a privileged user on the underlying operating system. (CVE-2024-33511)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Detections

Analytics

ArubaOS 8.10.x, 8.11.x, 10.4.x 10.5.x Multiple Vulnerabilities (ARUBA-PSA-2024-004)

critical Nessus Plugin ID 194952

Version 1.3