May 1, 2024 at 06:31PM
HPE Aruba Networking’s April 2024 security advisory highlights critical remote code execution (RCE) vulnerabilities in various versions of ArubaOS. Ten vulnerabilities are listed, including four critical-severity unauthenticated buffer overflow issues. The vendor recommends enabling Enhanced PAPI Security and upgrading to specific patched versions for ArubaOS to mitigate the flaws. System administrators are advised to apply the security updates promptly.
From the meeting notes, I have summarized the following critical points:
– HPE Aruba Networking has issued a security advisory for April 2024 detailing critical remote code execution (RCE) vulnerabilities impacting multiple versions of ArubaOS and its related products.
– The advisory lists ten vulnerabilities, four of which are critical-severity unauthenticated buffer overflow problems that can lead to remote code execution.
– The impacted products include HPE Aruba Networking Mobility Conductor, Mobility Controllers, WLAN Gateways, and SD-WAN Gateways managed by Aruba Central.
– The affected ArubaOS versions are 10.5.1.0 and below, 10.4.1.0 and older, 8.11.2.1 and below, and 8.10.0.10 and older, as well as all versions that have reached End of Life (EoL).
– The four critical remote code execution flaws are identified by CVE-2024-26305, CVE-2024-26304, CVE-2024-33511, and CVE-2024-33512.
– To mitigate the flaws, the vendor recommends enabling Enhanced PAPI Security and upgrading to patched versions for ArubaOS. The target upgrade versions that address all ten flaws are specified.
– HPE Aruba Networking is not aware of any cases of active exploitation or proof-of-concept (PoC) exploits for the mentioned vulnerabilities.
Additionally, the latest versions address another six medium-severity vulnerabilities. System administrators are recommended to apply the available security updates as soon as possible.