{"vulnerability": "cve-2022-37897", "sightings": [{"uuid": "1638d36b-7640-4cbf-99a3-4e8e7333d688", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-37897", "type": "seen", "source": "https://t.me/cibsecurity/54283", "content": "\u203c CVE-2022-37897 \u203c\n\nThere is a command injection vulnerability that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks AP management protocol) UDP port (8211). Successful exploitation of this vulnerability results in the ability to execute arbitrary code as a privileged user on the underlying operating system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-12T16:20:51.000000Z"}, {"uuid": "b00391bd-5c2a-4626-92ea-9e7c2220f8c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-37897", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/14568", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-37897\n\ud83d\udd25 CVSS Score: 9.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: There is a command injection vulnerability that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks AP management protocol) UDP port (8211). Successful exploitation of this vulnerability results in the ability to execute arbitrary code as a privileged user on the underlying operating system.\n\n\n\ud83d\udccf Published: 2022-11-03T18:12:09.080Z\n\ud83d\udccf Modified: 2025-05-02T18:52:49.234Z\n\ud83d\udd17 References:\n1. https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-016.txt", "creation_timestamp": "2025-05-02T19:16:14.000000Z"}]}