CVSS 3.1 Score 9.8 of 10 (high)


Published May 14, 2024
Updated: May 15, 2024


CVE-2024-31471 is a command injection vulnerability found in the Central Communications service of Aruba's Access Point management protocol (PAPI). It allows remote attackers to execute arbitrary code on the underlying operating system by sending specially crafted packets to the PAPI UDP port (8211). The vulnerability affects multiple products, including v7XvlV, v7XvlX, v7XvlW, and v7X51y. To remediate this issue, organizations should apply the necessary security patches or updates provided by Aruba. The vulnerability poses a high risk to organizations as successful exploitation can result in unauthorized remote code execution with privileged user access.

Leverage our Vulnerability Intelligence module to secure your systems now - get detailed insights on CVE-2024-37364. Book your demo today.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-31471 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options