CVE-2022-37888

There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks AP management protocol) UDP port (8211). Successful exploitation of these vulnerabilities results in the ability to execute arbitrary code as a privileged user on the underlying operating system of Aruba InstantOS 6.4.x: 6.4.4.8-4.2.4.20 and below; Aruba InstantOS 6.5.x: 6.5.4.23 and below; Aruba InstantOS 8.6.x: 8.6.0.18 and below; Aruba InstantOS 8.7.x: 8.7.1.9 and below; Aruba InstantOS 8.10.x: 8.10.0.1 and below; ArubaOS 10.3.x: 10.3.1.0 and below; Aruba has released upgrades for Aruba InnstantOS that address these security vulnerabilities.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*
cpe:2.3:o:arubanetworks:instant:*:*:*:*:*:*:*:*
cpe:2.3:o:arubanetworks:instant:*:*:*:*:*:*:*:*
cpe:2.3:o:arubanetworks:instant:*:*:*:*:*:*:*:*
cpe:2.3:o:arubanetworks:instant:*:*:*:*:*:*:*:*
cpe:2.3:o:arubanetworks:instant:*:*:*:*:*:*:*:*
OR cpe:2.3:h:arubanetworks:ap-103:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-114:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-115:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-120:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-121:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-130:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-135:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-204:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-205:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-207:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-214:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-215:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-224:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-225:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-303:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-304:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-305:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-314:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-315:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-318:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-324:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-325:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-334:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-340:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-370:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-504:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-505:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-514:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-515:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-534:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-535:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-555:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-635:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:ap-655:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:iap-103:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:iap-114:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:iap-115:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:iap-204:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:iap-205:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:iap-207:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:iap-224:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:iap-225:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:iap-304:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:iap-305:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:iap-314:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:iap-315:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:iap-318:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:iap-324:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:iap-325:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:iap-334:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:rap-108:-:*:*:*:*:*:*:*
cpe:2.3:h:arubanetworks:rap-109:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:siemens:scalance_w1750d_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:scalance_w1750d:-:*:*:*:*:*:*:*

History

21 Nov 2024, 07:15

Type Values Removed Values Added
References () https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf - Third Party Advisory () https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf - Third Party Advisory
References () https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-014.txt - Mailing List, Vendor Advisory () https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-014.txt - Mailing List, Vendor Advisory

12 Dec 2022, 21:25

Type Values Removed Values Added
References (CONFIRM) https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf - (CONFIRM) https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf - Third Party Advisory
CPE cpe:2.3:o:siemens:scalance_w1750d_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:scalance_w1750d:-:*:*:*:*:*:*:*

08 Nov 2022, 14:15

Type Values Removed Values Added
References
  • (CONFIRM) https://cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf -

11 Oct 2022, 05:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-10-06 18:16

Updated : 2024-11-21 07:15


NVD link : CVE-2022-37888

Mitre link : CVE-2022-37888

CVE.ORG link : CVE-2022-37888


JSON object : View

Products Affected

arubanetworks

  • iap-334
  • ap-135
  • ap-635
  • ap-325
  • ap-205
  • ap-504
  • iap-115
  • iap-304
  • arubaos
  • iap-305
  • ap-534
  • ap-303
  • iap-205
  • ap-120
  • ap-130
  • ap-505
  • ap-304
  • ap-204
  • ap-225
  • ap-115
  • ap-224
  • ap-305
  • ap-314
  • iap-225
  • iap-324
  • iap-103
  • iap-204
  • ap-318
  • rap-109
  • ap-215
  • ap-340
  • ap-114
  • ap-555
  • ap-515
  • ap-214
  • iap-224
  • ap-655
  • ap-121
  • ap-535
  • ap-334
  • ap-207
  • iap-315
  • ap-103
  • ap-514
  • iap-114
  • instant
  • rap-108
  • iap-207
  • iap-325
  • ap-370
  • iap-318
  • ap-324
  • ap-315
  • iap-314

siemens

  • scalance_w1750d_firmware
  • scalance_w1750d
CWE
CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')