Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

CVE-2024-26304 PoC — Aruba Networks ArubaOS 安全漏洞

Source
https://github.com/Roud-Roud-Agency/CVE-2024-26304-RCE-exploits
Associated Vulnerability
Title:Aruba Networks ArubaOS 安全漏洞 (CVE-2024-26304)
Description:There is a buffer overflow vulnerability in the underlying L2/L3 Management service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point management protocol) UDP port (8211). Successful exploitation of this vulnerability results in the ability to execute arbitrary code as a privileged user on the underlying operating system.
Description
Critical RCE Vulnerabilities in HPE Aruba Devices (may 2024)
Readme
# CVE-2024-26304-RCE-exploits
Critical RCE Vulnerabilities in HPE Aruba Devices (may 2024)

## 🌟 Description

This script is a powerful exploitation tool for the CVE-2024-26304, CVE-2024-26305, CVE-2024-33511, CVE-2024-33512  vulnerabilities found in specific versions of HPE Aruba Devices. It enables command execution and unauthorized access to the affected devices.

## ⚙️ Installation

To set up the exploitation tool, follow these steps:

1. **Download the repository**:

```bash
git clone https://github.com/Roud-Roud-Agency/CVE-2024-26304-RCE-exploits
```
2. **Navigate to the tool's directory**:

```bash
cd CVE-2024-26304-RCE-exploits
```

## 🚀 Usage

To use the tool, run the script from the command line as follows:

```bash
python CVE-2024-26304.py [options]
```

### Options

- **-u, --url**:
  Specify the target URL or IP address.

- **-f, --file**:
  Specify a file containing a list of URLs to scan.

- **-t, --threads**:
  Set the number of threads for concurrent scanning.

- **-o, --output**:
  Define an output file to save the scan results.

When a single URL is provided with the `-u` option and the target is vulnerable, the script will attempt to open an interactive shell.

### Example

```bash
$ python3 CVE-2024-26304.py -u http://127.0.0.1
[+] Command executed successfully.
[!] http://127.0.0.1 is vulnerable to CVE-2024-26304: uid=0(root) gid=0(root)
[+] Opening interactive shell...
$ id
[+] Command executed successfully.
uid=0(root) gid=0(root)
```

## 📊 Mass Scanning

For mass scanning, use the `-f` option with a file containing URLs. The tool will scan each URL and print concise results, indicating whether each target is vulnerable.

```bash
python CVE-2024-26304.py -f urls.txt
```

## 🗒️ Affected Versions

The vulnerability affects the:

- ArubaOS 10.5.1.0 and below
- ArubaOS 10.4.1.0 and below
- ArubaOS 8.11.2.1 and below
- ArubaOS 8.10.0.10 and below
- SD-WAN 8.7.0.0-2.3.0.x
- SD-WAN 8.6.0.4-2.2.x.x

These systems are considered to be end-of-life (EOL), meaning they are no longer supported or receiving updates from the manufacturer. It is strongly recommended that these systems are no longer used.

## 🛡️ Disclaimer

Use this tool responsibly and ethically. Always obtain proper authorization before testing any system for vulnerabilities.
File Snapshot

Log in to view the POC file snapshot cached by Shenlong Bot

Log in to view
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →