CVE-2024-33517

CVSS 5.3 MEDIUMEPSS 0.6%CWE-121

Vexday Risk Score

13Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS 5.3EPSS 0.6%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

01 May 2024Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

An unauthenticated Denial-of-Service (DoS) vulnerability exists in the Radio Frequency Manager service accessed via the PAPI protocol. Successful exploitation of this vulnerability results in the ability to interrupt the normal operation of the affected service.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Hewlett Packard Enterprise (HPE) · Aruba Mobility Conductor (formerly Mobility Master); Aruba Mobility Controllers; WLAN Gateways and SD-WAN Gateways managed by Aruba Central

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2024-004.txt