CVE-2021-37729

Name of the Vulnerable Software and Affected Versions: Aruba SD-WAN Software and Gateways versions prior to 8.6.0.0-2.2.0.4 Aruba Operating System Software versions prior to 8.7.1.3 Aruba Operating System Software versions prior to 8.6.0.9 Aruba Operating System Software versions prior to 8.5.0.12 Aruba Operating System Software versions prior to 8.3.0.16 Aruba Operating System Software versions prior to 6.5.4.19 Aruba Operating System Software versions prior to 6.4.4.25

Description: A remote path traversal issue was discovered. Aruba has released patches that address this security issue.

Recommendations: For Aruba SD-WAN Software and Gateways versions prior to 8.6.0.0-2.2.0.4, update to a version that includes the released patch. For Aruba Operating System Software versions prior to 8.7.1.3, update to version 8.7.1.3 or later. For Aruba Operating System Software versions prior to 8.6.0.9, update to version 8.6.0.9 or later. For Aruba Operating System Software versions prior to 8.5.0.12, update to version 8.5.0.12 or later. For Aruba Operating System Software versions prior to 8.3.0.16, update to version 8.3.0.16 or later. For Aruba Operating System Software versions prior to 6.5.4.19, update to version 6.5.4.19 or later. For Aruba Operating System Software versions prior to 6.4.4.25, update to version 6.4.4.25 or later.