Name of the Vulnerable Software and Affected Versions:

Aruba Access Point (affected versions not specified)

Description:

The issue is related to a command injection vulnerability in the deauthentication service. This could lead to unauthenticated remote code execution by sending specially crafted packets to the PAPI UDP port (8211). Successful exploitation results in the ability to execute arbitrary code as a privileged user on the underlying operating system.

Recommendations:

At the moment, there is no information about a newer version that contains a fix for this vulnerability.