Skip to main content

Aruba Products Multiple Vulnerabilities

Release Date: 26 Jul 2023 2913 Views

RISK: Medium Risk

TYPE: Security software and application - Security Software & Appliance

TYPE: Security Software & Appliance

Multiple vulnerabilities were identified in Aruba Products. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution and sensitive information disclosure on the targeted system.


Impact

  • Remote Code Execution
  • Information Disclosure

System / Technologies affected

  • Aruba Access Points running InstantOS and ArubaOS 10

Affected Software Versions

  • ArubaOS 10.4.0.1 and below
  • InstantOS 8.11.1.0 and below
  • InstantOS 8.10.0.6 and below
  • InstantOS 8.6.0.20 and below
  • InstantOS 6.5.4.24 and below
  • InstantOS 6.4.4.8-4.2.4.21 and below

 

The following ArubaOS and InstantOS software versions that are End of Life are affected by these vulnerabilities and are not patched by this advisory

  • ArubaOS 10.3.x.x
  • InstantOS 8.9.x.x
  • InstantOS 8.8.x.x
  • InstantOS 8.7.x.x
  • InstantOS 8.5.x.x
  • InstantOS 8.4.x.x

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:


Vulnerability Identifier


Source


Related Link