CVE-2020-24633

Name of the Vulnerable Software and Affected Versions Aruba 9000 Gateway versions prior to the fixed version Aruba 7000 Series Mobility Controllers versions prior to the fixed version Aruba 7200 Series Mobility Controllers versions 2.1.0.1 through 2.2.0.0 Aruba 7200 Series Mobility Controllers versions 6.4.4.23 through 8.7.0.0

Description There are multiple buffer overflow vulnerabilities that could lead to unauthenticated remote code execution by sending especially crafted packets destined to the PAPI (Aruba Networks AP management protocol) UDP port (8211) of access-points or controllers.

Recommendations For Aruba 9000 Gateway, update to a version that includes the fix for this issue. For Aruba 7000 Series Mobility Controllers, update to a version that includes the fix for this issue. For Aruba 7200 Series Mobility Controllers version 2.1.0.1 through 2.2.0.0, update to a version that includes the fix for this issue. For Aruba 7200 Series Mobility Controllers version 6.4.4.23 through 8.7.0.0, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the PAPI UDP port (8211) to minimize the risk of exploitation.