CVE-2020-24634

Name of the Vulnerable Software and Affected Versions Aruba 9000 Gateway versions 2.1.0.1 through 2.2.0.0 Aruba 7000 Series Mobility Controllers versions 6.4.4.23 through 6.5.4.17 Aruba 7200 Series Mobility Controllers versions 8.2.2.9 through 8.7.0.0

Description An attacker can remotely inject arbitrary commands by sending specially crafted packets to the PAPI (Aruba Networks AP Management protocol) UDP port (8211) of access points or controllers.

Recommendations For Aruba 9000 Gateway versions 2.1.0.1 through 2.2.0.0, update to a version above 2.2.0.0. For Aruba 7000 Series Mobility Controllers versions 6.4.4.23 through 6.5.4.17, update to a version above 6.5.4.17. For Aruba 7200 Series Mobility Controllers versions 8.2.2.9 through 8.7.0.0, update to a version above 8.7.0.0. As a temporary workaround, consider restricting access to the PAPI UDP port (8211) until a patch is available.