CVE-2021-25149

Name of the Vulnerable Software and Affected Versions Aruba Instant versions 6.4.4.8 through 6.4.4.17 and below Aruba Instant versions 6.5.4.16 and below Aruba Instant versions 8.3.0.12 and below Aruba Instant versions 8.5.0.6 and below Aruba Instant versions 8.6.0.2 and below

Description A remote buffer overflow issue was discovered in Aruba Instant Access Point products. The vulnerability is related to the implementation of the PAPI protocol for deploying Wi-Fi, specifically due to the lack of size checking for input data during buffer copying. This could allow a remote attacker to execute arbitrary code by sending specially crafted packets.

Recommendations For Aruba Instant 6.4.x, update to a version above 6.4.4.17. For Aruba Instant 6.5.x, update to a version above 6.5.4.16. For Aruba Instant 8.3.x, update to a version above 8.3.0.12. For Aruba Instant 8.5.x, update to a version above 8.5.0.6. For Aruba Instant 8.6.x, update to a version above 8.6.0.2.