PT-2021-21844 · Hewlett Packard · Hpe Aruba Instant
Published
2021-10-12
·
Updated
2021-11-24
·
CVE-2021-37730
CVSS v2.0
9.0
High
| Vector | AV:N/AC:L/Au:S/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions:
HPE Aruba Instant (IAP) versions 6.4.4.8 through 6.4.4.18 and below
HPE Aruba Instant (IAP) versions 6.5.4.20 and below
HPE Aruba Instant (IAP) versions 8.5.0.12 and below
HPE Aruba Instant (IAP) versions 8.6.0.11 and below
HPE Aruba Instant (IAP) versions 8.7.1.3 and below
Description:
A remote arbitrary command execution issue was discovered. Aruba has released patches to address this security issue.
Recommendations:
For versions 6.4.4.8 through 6.4.4.18 and below, apply the released patch.
For versions 6.5.4.20 and below, apply the released patch.
For versions 8.5.0.12 and below, apply the released patch.
For versions 8.6.0.11 and below, apply the released patch.
For versions 8.7.1.3 and below, apply the released patch.
Fix
OS Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Hpe Aruba Instant