Aruba Networks has issued a security advisory to notify customers of six critical vulnerabilities affecting multiple versions of ArubaOS

Created with Sketch.

Aruba Networks has issued a security advisory to notify customers of six critical vulnerabilities affecting multiple versions of ArubaOS

The flaws affect Aruba Mobility Conductor, Aruba Mobility Controllers, and WLAN Gateways and SD-WAN Gateways managed by Aruba.

Aruba Networks is a California subsidiary of Hewlett Packard Enterprise, specializing in computer networks and wireless connectivity solutions.

The affected versions are:

• ArubaOS 8.6.0.19 and below

• ArubaOS 8.10.0.4 and below

• ArubaOS 10.3.1.0 and below

• SD-WAN 8.7.0.0-2.3.0.8 and below

The upgrade versions should be:

• ArubaOS 8.10.0.5 and above

• ArubaOS 8.11.0.0 and above

• ArubaOS 10.3.1.1 and above

• SD-WAN 8.7.0.0-2.3.0.9 and above

There are several end-of-life (EoL) versions that are also affected by these vulnerabilities and will not receive a patch update:

• ArubaOS 6.5.4.x

• ArubaOS 8.7.xx

• ArubaOS 8.8.xx

• ArubaOS 8.9.xx

• SD-WAN 8.6.0.4-2.2.xx

https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-002.txt

    © 2023 Cybecs

    Skip to content