Skip to main content

Aruba Products Multiple Vulnerabilities

Release Date: 1 Mar 2023 4046 Views

RISK: High Risk

TYPE: Security software and application - Security Software & Appliance

TYPE: Security Software & Appliance

Multiple vulnerabilities were identified in Aruba Products. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution, sensitive information disclosure, cross-site scripting and security restriction bypass on the targeted system.


  • Remote Code Execution
  • Security Restriction Bypass
  • Information Disclosure
  • Cross-Site Scripting

System / Technologies affected

  • Aruba Mobility Conductor (formerly Mobility Master)
  • Aruba Mobility Controllers
  • WLAN Gateways and SD-WAN Gateways managed by Aruba Central

Affected Software Versions

  • ArubaOS and below
  • ArubaOS and below
  • ArubaOS and below
  • SD-WAN and below

The following ArubaOS and SD-WAN software versions that are End of Life are affected by these vulnerabilities and are not patched by this advisory

  • ArubaOS 6.5.4.x
  • ArubaOS 8.7.x.x
  • ArubaOS 8.8.x.x
  • ArubaOS 8.9.x.x
  • SD-WAN


Before installation of the software, please visit the vendor web-site for more details.


Apply fixes issued by the vendor:

Vulnerability Identifier


Related Link