CVE-2022-37888 - Vulnerability Details

There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks AP management protocol) UDP port (8211). Successful exploitation of these vulnerabilities results in the ability to execute arbitrary code as a privileged user on the underlying operating system of Aruba InstantOS 6.4.x: 6.4.4.8-4.2.4.20 and below; Aruba InstantOS 6.5.x: 6.5.4.23 and below; Aruba InstantOS 8.6.x: 8.6.0.18 and below; Aruba InstantOS 8.7.x: 8.7.1.9 and below; Aruba InstantOS 8.10.x: 8.10.0.1 and below; ArubaOS 10.3.x: 10.3.1.0 and below; Aruba has released upgrades for Aruba InnstantOS that address these security vulnerabilities.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.01227.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

n/a

Aruba Access Points: 100 Series; 103 Series; 110 Series; 120 Series; 130 Series; 200 Series; 207 Series; 210 Series; 220 Series; 260 Series; 300 Series; 303 Series; 310 Series; 318 Series Hardened Access Points; 320 Series; 330 Series; 340 Series; 370 Series; 500 Series; 510 Series; 530 Series; 550 Series; 630 Series; 650 Series;

affected

Version	Status	Constraints
`Aruba InstantOS 6.4.x: 6.4.4.8-4.2.4.20 and below`	affected	—
`Aruba InstantOS 6.5.x: 6.5.4.23 and below`	affected	—
`Aruba InstantOS 8.6.x: 8.6.0.18 and below`	affected	—
`Aruba InstantOS 8.7.x: 8.7.1.9 and below`	affected	—
`Aruba InstantOS 8.10.x: 8.10.0.1 and below`	affected	—
`ArubaOS 10.3.x: 10.3.1.0 and below`	affected	—

Configuration 1 [-]

AND

OR	cpe:2.3:o:arubanetworks:arubaos::::::::
	cpe:2.3:o:arubanetworks:instant::::::::
	cpe:2.3:o:arubanetworks:instant::::::::
	cpe:2.3:o:arubanetworks:instant::::::::
	cpe:2.3:o:arubanetworks:instant::::::::
	cpe:2.3:o:arubanetworks:instant::::::::

OR	cpe:2.3:h:arubanetworks:ap-103:-:::::::*
	cpe:2.3:h:arubanetworks:ap-114:-:::::::*
	cpe:2.3:h:arubanetworks:ap-115:-:::::::*
	cpe:2.3:h:arubanetworks:ap-120:-:::::::*
	cpe:2.3:h:arubanetworks:ap-121:-:::::::*
	cpe:2.3:h:arubanetworks:ap-130:-:::::::*
	cpe:2.3:h:arubanetworks:ap-135:-:::::::*
	cpe:2.3:h:arubanetworks:ap-204:-:::::::*
	cpe:2.3:h:arubanetworks:ap-205:-:::::::*
	cpe:2.3:h:arubanetworks:ap-207:-:::::::*
	cpe:2.3:h:arubanetworks:ap-214:-:::::::*
	cpe:2.3:h:arubanetworks:ap-215:-:::::::*
	cpe:2.3:h:arubanetworks:ap-224:-:::::::*
	cpe:2.3:h:arubanetworks:ap-225:-:::::::*
	cpe:2.3:h:arubanetworks:ap-303:-:::::::*
	cpe:2.3:h:arubanetworks:ap-304:-:::::::*
	cpe:2.3:h:arubanetworks:ap-305:-:::::::*
	cpe:2.3:h:arubanetworks:ap-314:-:::::::*
	cpe:2.3:h:arubanetworks:ap-315:-:::::::*
	cpe:2.3:h:arubanetworks:ap-318:-:::::::*
	cpe:2.3:h:arubanetworks:ap-324:-:::::::*
	cpe:2.3:h:arubanetworks:ap-325:-:::::::*
	cpe:2.3:h:arubanetworks:ap-334:-:::::::*
	cpe:2.3:h:arubanetworks:ap-340:-:::::::*
	cpe:2.3:h:arubanetworks:ap-370:-:::::::*
	cpe:2.3:h:arubanetworks:ap-504:-:::::::*
	cpe:2.3:h:arubanetworks:ap-505:-:::::::*
	cpe:2.3:h:arubanetworks:ap-514:-:::::::*
	cpe:2.3:h:arubanetworks:ap-515:-:::::::*
	cpe:2.3:h:arubanetworks:ap-534:-:::::::*
	cpe:2.3:h:arubanetworks:ap-535:-:::::::*
	cpe:2.3:h:arubanetworks:ap-555:-:::::::*
	cpe:2.3:h:arubanetworks:ap-635:-:::::::*
	cpe:2.3:h:arubanetworks:ap-655:-:::::::*
	cpe:2.3:h:arubanetworks:iap-103:-:::::::*
	cpe:2.3:h:arubanetworks:iap-114:-:::::::*
	cpe:2.3:h:arubanetworks:iap-115:-:::::::*
	cpe:2.3:h:arubanetworks:iap-204:-:::::::*
	cpe:2.3:h:arubanetworks:iap-205:-:::::::*
	cpe:2.3:h:arubanetworks:iap-207:-:::::::*
	cpe:2.3:h:arubanetworks:iap-224:-:::::::*
	cpe:2.3:h:arubanetworks:iap-225:-:::::::*
	cpe:2.3:h:arubanetworks:iap-304:-:::::::*
	cpe:2.3:h:arubanetworks:iap-305:-:::::::*
	cpe:2.3:h:arubanetworks:iap-314:-:::::::*
	cpe:2.3:h:arubanetworks:iap-315:-:::::::*
	cpe:2.3:h:arubanetworks:iap-318:-:::::::*
	cpe:2.3:h:arubanetworks:iap-324:-:::::::*
	cpe:2.3:h:arubanetworks:iap-325:-:::::::*
	cpe:2.3:h:arubanetworks:iap-334:-:::::::*
	cpe:2.3:h:arubanetworks:rap-108:-:::::::*
	cpe:2.3:h:arubanetworks:rap-109:-:::::::*

Configuration 2 [-]

AND

cpe:2.3:o:siemens:scalance_w1750d_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_w1750d:-:*:*:*:*:*:*:*

No data.

Project Subscriptions

Vendors	Products
Arubanetworks Subscribe	Ap-103 Subscribe Ap-114 Subscribe Ap-115 Subscribe Ap-120 Subscribe Ap-121 Subscribe Ap-130 Subscribe Ap-135 Subscribe Ap-204 Subscribe Ap-205 Subscribe Ap-207 Subscribe Ap-214 Subscribe Ap-215 Subscribe Ap-224 Subscribe Ap-225 Subscribe Ap-303 Subscribe Ap-304 Subscribe Ap-305 Subscribe Ap-314 Subscribe Ap-315 Subscribe Ap-318 Subscribe Ap-324 Subscribe Ap-325 Subscribe Ap-334 Subscribe Ap-340 Subscribe Ap-370 Subscribe Ap-504 Subscribe Ap-505 Subscribe Ap-514 Subscribe Ap-515 Subscribe Ap-534 Subscribe Ap-535 Subscribe Ap-555 Subscribe Ap-635 Subscribe Ap-655 Subscribe Arubaos Subscribe Iap-103 Subscribe Iap-114 Subscribe Iap-115 Subscribe Iap-204 Subscribe Iap-205 Subscribe Iap-207 Subscribe Iap-224 Subscribe Iap-225 Subscribe Iap-304 Subscribe Iap-305 Subscribe Iap-314 Subscribe Iap-315 Subscribe Iap-318 Subscribe Iap-324 Subscribe Iap-325 Subscribe Iap-334 Subscribe Instant Subscribe Rap-108 Subscribe Rap-109 Subscribe
Siemens Subscribe	Scalance W1750d Subscribe Scalance W1750d Firmware Subscribe

Advisories

Source	ID	Title
EUVD	EUVD-2022-40495	There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks AP management protocol) UDP port (8211). Successful exploitation of these vulnerabilities results in the ability to execute arbitrary code as a privileged user on the underlying operating system of Aruba InstantOS 6.4.x: 6.4.4.8-4.2.4.20 and below; Aruba InstantOS 6.5.x: 6.5.4.23 and below; Aruba InstantOS 8.6.x: 8.6.0.18 and below; Aruba InstantOS 8.7.x: 8.7.1.9 and below; Aruba InstantOS 8.10.x: 8.10.0.1 and below; ArubaOS 10.3.x: 10.3.1.0 and below; Aruba has released upgrades for Aruba InnstantOS that address these security vulnerabilities.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf
https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-014.txt

History

No history.

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: hpe

Published: 2022-10-06T00:00:00

Updated: 2024-08-03T10:37:42.050Z

Reserved: 2022-08-08T00:00:00

Link: CVE-2022-37888

Vulnrichment

No data.

NVD

Status : Modified

Published: 2022-10-06T18:16:05.287

Modified: 2024-11-21T07:15:18.897

Link: CVE-2022-37888

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-120

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Project Subscriptions

Projects

JSON object

JSON object

JSON object

JSON object

JSON object