Archive of Security Advisories

• TCP SACK PANIC - Kernel vulnerabilities - Sep 15, 2020
  CVE Number: CVE-2019-11477, CVE-2019-11478, CVE-2019-11479

  Aruba has released updates to products affected by Linux Kernel vulnerabilities known as TCP SACK PANIC. Successful exploitation of the most severe of these vulnerabilities could allow a remote attacker to trigger a kernel panic and impact the system availability.
• Multiple Memory Corruption Vulnerabilities for Aruba CX Switches - Sep 15, 2020
  CVE Number: CVE-2020-7121, CVE-2020-7122

  Four memory corruption vulnerabilities in the Aruba CX Switches have been found. Successful exploitation of these vulnerabilities could result in Local Denial of Service of both LLDP (Link Layer Discovery Protocol) and CDP (Cisco Discovery Protocol) processes in the switch.
• Authenticated arbitrary file modification vulnerability in Analytics and Location Engine (ALE) - Sep 1, 2020
  CVE Number: CVE-2020-7119

  Aruba has released an update to Analytics and Location Engine (ALE) that addresses a high severity vulnerability in the Web Management Interface of this product.
• Multiple vulnerabilities in Web Management Interface for Aruba Intelligent Edge Switches - Aug 25, 2020
  CVE Number: CVE-2019-5320, CVE-2019-5321

  Two vulnerabilities in the Aruba Intelligent Edge Switches web management interface have been found. Successful exploitation of these vulnerabilities could result in unauthorized administrative access to the switch.
• "Ripple20" Multiple Vulnerabilities affecting the Treck TCP/ IP stack - Jun 23, 2020
  CVE Number: CVE-2020-11896, CVE-2020-11897, CVE-2020-11898, CVE-2020-11899, CVE-2020-11900, CVE-2020-11901, CVE-2020-11902, CVE-2020-11903, CVE-2020-11908, CVE-2020-11909, CVE-2020-11910, CVE-2020-11911, CVE-2020-11912, CVE-2020-11913, CVE-2020-11914

  A collection of vulnerabilities known as "Ripple20" affect the Treck TCP/IP stack implementation. Successful exploitation of these vulnerabilities could result in denial of service, information disclosure or remote code execution. This is a preliminary advisory based on initial investigation; it will be updated as new information becomes known. Aruba has not yet performed a complete analysis of impact; CVSS scores listed below represent the worst case scenario and actual severity may be less than reported here.
• ClearPass Policy Manager Multiple Vulnerabilities - Jun 2, 2020
  CVE Number: CVE-2020-7115, CVE-2020-7116, CVE-2020-7117

  Aruba has released updates to ClearPass Policy Manager that address multiple security vulnerabilities.
• ClearPass Policy Manager Multiple Vulnerabilities - Apr 14, 2020
  CVE Number: CVE-2020-7110, CVE-2020-7111, CVE-2020-7113, CVE-2020-7114

  Aruba has released updates to ClearPass Policy Manager that address multiple security vulnerabilities.
• WPA and WPA2 Disassociation Vulnerability ("Kr00k") - Feb 28, 2020
  CVE Number: CVE-2019-15126

  A timing flaw in certain Wi-Fi chip firmware may allow an attacker to decrypt a limited amount of WPA2-encrypted frames using a known all-zero key. Some Aruba products are affected by this vulnerability. This is a preliminary advisory based on initial investigation; it will be updated as new information becomes known.
• AirWave Management Platform Multiple Vulnerabilities - Feb 25, 2020
  CVE Number: CVE-2019-5323, CVE-2019-5326

  Multiple Remote Code Execution Vulnerabilities have been uncovered in the AirWave Management Platform. An attacker who is able to exploit these vulnerabilities could run untrusted arbitrary commands or code on the AirWave platform. All three vulnerabilities require the attacker to be authenticated to the administrative interface of AirWave.
• Information Disclosure in Web Management Interface for Aruba Intelligent Edge Switches - Feb 11, 2020
  CVE Number: CVE-2019-5322

  An information disclosure vulnerability is present in Aruba Intelligent Edge Switches which allows an attacker to retrieve sensitive system information. This attack can be carried out without user authentication under very specific conditions.
• Aruba Mobility Controller Multiple Remote Code Execution Vulnerabilities - Sep 3, 2019
  CVE Number: CVE-2018-7081, CVE-2019-5314, CVE-2019-5315

  Aruba has released updates to ArubaOS that address serious vulnerabilities present in some versions running on the Aruba Mobility Controller. An attacker could use these vulnerabilities to execute arbitrary code on the underlying operating system with full system privileges.
• Aruba Impact for CPU Side-Channel Attacks - Jun 25, 2019
  CVE Number: CVE-2017-5715, CVE-2017-5753, CVE-2017-5754, CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091

  This is an update to ARUBA-PSA-2018-001. Since the publication of that advisory, a number of additional CPU side-channel attacks have been demonstrated and theorized, with names such as MDS (Microarchitectural Data Sampling), ZombieLoad, Fallout, RIDL and Store-to-Leak Forwarding. All of these techniques share similar traits. Aruba is not affected by these vulnerabilities. The text of this advisory will continue to apply to future related vulnerabilities unless Aruba issues an advisory to the contrary.
• WPA3 Multiple Vulnerabilities - Apr 16, 2019
  CVE Number: CVE-2019-9494

  On April 10, 2019 a research paper by Mathy Vanhoef and Eyal Ronen was released documenting a series of potential vulnerabilities in implementations of WPA3 and EAP-pwd (RFC 5931). Details on EAP-pwd vulnerabilities have not yet been released. This advisory covers only WPA3 vulnerabilities.
• Aruba Instant Multiple Vulnerabilities - Feb 27, 2019
  CVE Number: CVE-2018-7064, CVE-2018-7082, CVE-2018-7083, CVE-2018-7084, CVE-2018-16417

  Aruba has released updates to Aruba Instant (IAP) that address multiple serious vulnerabilities. The most significant vulnerability is rated CRITICAL with a CVSS score of 9.8.
• ClearPass Policy Manager Multiple Vulnerabilities - Nov 7, 2018
  CVE Number: CVE-2018-7063, CVE-2018-7065, CVE-2018-7066, CVE-2018-7067, CVE-2018-7079

  Aruba has released an update to ClearPass Policy Manager that addresses multiple security vulnerabilities.
• Aruba BLE Radio Firmware Vulnerability - Oct 18, 2018
  CVE Number: CVE-2018-7080

  A vulnerability exists in the firmware of embedded BLE radios that are part of some Aruba access points. An attacker who is able to exploit the vulnerability could install new, potentially malicious firmware into the AP's BLE radio and could then gain access to the AP's console port. Aruba products are NOT affected by a similar vulnerability being tracked as CVE-2018-16986.
• Apache Struts Vulnerability in ClearPass Policy Manager - Aug 29, 2018
  CVE Number: CVE-2018-11776

  Apache Struts versions 2.3 prior to 2.3.35 suffers from a possible Remote Code Execution vulnerability. After examination of the source code and extensive testing using both commercial vulnerability scanners and exploit-specific test scripts, Aruba has determined that ClearPass is not affected by the latest vulnerability in Apache Struts.
• Linux Kernel Vulnerabilities in ClearPass and AirWave - Aug 24, 2018
  CVE Number: CVE-2018-5390, CVE-2018-5391

  Two Linux kernel vulnerabilities, known as "SegmentSmack" and "FragmentSmack", have been publicly disclosed. The Linux kernel used by Aruba ClearPass Policy Manager and Aruba AirWave is affected. Other Aruba products are not affected.
• Return Of Bleichenbacher's Oracle Threat (ROBOT) - Mar 29, 2018
  CVE Number: CVE-2017-13099

  The cryptography library used by Aruba Instant provides a weak Bleichenbacher oracle when any TLS cipher suite using RSA key exchange is negotiated. An attacker may be able to recover private keys for X.509 certificates. This vulnerability is referred to as "ROBOT."
• ClearPass Policy Manager Multiple Vulnerabilities - Mar 21, 2018
  CVE Number: CVE-2018-7058, CVE-2018-7059, CVE-2018-7060, CVE-2018-0489

  Aruba has released an update to ClearPass Policy Manager that addresses four security vulnerabilities.
• Unauthorized Memory Disclosure through CPU Side-Channel Attacks ("Meltdown" and "Spectre") - Jan 4, 2018
  CVE Number: CVE-2017-5715, CVE-2017-5753, CVE-2017-5754

  Vulnerabilities exist in multiple modern CPU architectures that could permit an attacker to read the contents of memory. Aruba products are not affected by these vulnerabilities, based on how the products are accessed.
• WPA2 Key Reinstallation Vulnerabilities (CVE-2017-13077) - Oct 16, 2017
  CVE Number: CVE-2017-13077, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13082, CVE-2017-13084, CVE-2017-13086, CVE-2017-13087, CVE-2017-13088

  Common industry-wide flaws in WPA2 key management may allow an attacker to decrypt, replay, and forge some frames on a WPA2 encrypted network. The accompanying FAQ document provides more extensive details.
• ArubaOS Multiple Vulnerabilities - Oct 11, 2017
  CVE Number: CVE-2017-9000, CVE-2017-9003

  Multiple flaws are present in ArubaOS that may permit an unauthenticated user to access files, corrupt memory, and potentially execute remote code. Software updates are available to address these vulnerabilities.
• Multiple Vulnerabilities in 'dnsmasq' - Oct 11, 2017
  CVE Number: CVE-2017-14491, CVE-2017-14492, CVE-2017-14493, CVE-2017-14494, CVE-2017-14495, CVE-2017-14496

  Multiple serious vulnerabilities were reported in the open-source component "dnsmasq". These vulnerabilities primarily represent a denial-of-service risk, but they could also potentially be leveraged to lead to remote code execution.
• ClearPass Policy Manager Multiple Vulnerabilities - Sep 27, 2017
  CVE Number: CVE-2017-9001, CVE-2017-9002

  Aruba has released an update to ClearPass Policy Manager that addresses two security vulnerabilities.
• Apache Struts Multiple Vulnerabilities - Sep 11, 2017
  CVE Number: CVE-2017-9804, CVE-2017-9793, CVE-2017-9805, CVE-2017-12611

  The Apache Struts group announced Struts version 2.3.34 on September 7, 2017. Included in this update were fixes for four security vulnerabilities. Aruba ClearPass makes use of Apache Struts. This advisory provides details on Aruba's exposure to these vulnerabilities: CVE-2017-9804 (Affected), CVE-2017-9793 (NOT affected), CVE-2017-9805 (NOT affected), CVE-2017-12611 (POSSIBLY affected).
• HPE Aruba ClearPass Policy Manager, Multiple Vulnerabilities - Jun 14, 2017
  CVE Number: CVE-2017-5824, CVE-2017-5825, CVE-2017-5826, CVE-2017-5827, CVE-2017-5828, CVE-2017-5829, CVE-2017-5647

  Potential security vulnerabilities have been identified in HPE Aruba ClearPass Policy Manager. The vulnerabilities could be remotely exploited to allow access restriction bypass, arbitrary command execution, cross site scripting (XSS), escalation of privilege and disclosure of information.
• HPE Aruba AirWave Glass, Remote Code Execution - May 24, 2017
  CVE Number: CVE-2017-8946

  A potential vulnerability in HPE Aruba AirWave Glass 1.0.0 and 1.0.1 could be remotely exploited to allow remote code execution.
• Apache Struts Remote Code Execution Vulnerability - Mar 10, 2017
  CVE Number: CVE-2017-5638

  An unauthenticated remote code execution vulnerability in the Apache Struts 2 package has been publicly reported. This advisory details Aruba's exposure to this vulnerability.
• AirWave Management Platform Multiple Vulnerabilities - Jan 18, 2017
  CVE Number: CVE-2016-8526, CVE-2016-8527

  This week, Aruba expects a security consulting firm to publicly disclose two vulnerabilities in Aruba AirWave. The first is an XML External Entity (XXE) vulnerability, while the second is a reflected cross-site scripting (XSS) vulnerability. Both vulnerabilities exist in the VisualRF component of AirWave. Both vulnerabilities require authentication using valid administrative credentials.
• "Dirty Cow" Linux Kernel Vulnerability (CVE-2016-5195) - Nov 4, 2016
  CVE Number: CVE-2016-5195

  A race condition was found in the way the Linux kernel's memory subsystem handled the copy-on-write (COW) breakage of private read-only memory mappings. An unprivileged, local user could use this flaw to gain write access to otherwise read-only memory mappings and thus increase their privileges on the system. Multiple Aruba products are built on top of Linux.
• ClearPass Policy Manager Multiple Vulnerabilities - Sep 21, 2016
  CVE Number: CVE-2016-4401

  Multiple vulnerabilities have been fixed in ClearPass Policy Manager. Update to the latest supported version to address all vulnerabilities.
• ClearPass Policy Manager Multiple Vulnerabilities - Jun 1, 2016
  CVE Number: CVE-2016-2107, CVE-2016-2118, CVE-2016-2034

  Multiple vulnerabilities exist in ClearPass Policy Manager. Given the severity of these issues, customers are urged to update their software immediately by applying a hotfix patch.
• ClearPass Policy Manager Multiple Vulnerabilities - May 11, 2016
  CVE Number: CVE-2016-2033

  Multiple vulnerabilities exist in ClearPass Policy Manager. Given the severity of these issues, customers are urged to update their software immediately.
• ArubaOS Multiple Vulnerabilities - May 11, 2016
  CVE Number: CVE-2016-0801, CVE-2016-0802, CVE-2015-8605

  Multiple vulnerabilities have recently been fixed in ArubaOS.
• ArubaOS PAPI Vulnerabilities - May 4, 2016
  CVE Number:

  Although this information was previously disclosed, an impending public disclosure by the Google Security Team (focused on Aruba Instant) will call out the vulnerable details of this protocol and bring it to the attention of the attacker community.
• Aruba Instant Multiple Vulnerabilities - May 4, 2016
  CVE Number: CVE-2016-2031, CVE-2016-0801, CVE-2016-0802

  Multiple vulnerabilities exist in Aruba Instant. The contents of this advisory are subject to an impending public disclosure by the Google Security Team under a 90-day disclosure deadline; therefore customers are advised to treat this advisory urgently.
• AirWave Management Platform Multiple Vulnerabilities - May 4, 2016
  CVE Number: CVE-2016-2032

  Multiple vulnerabilities exist in the AirWave Management Platform. The contents of this advisory are subject to an impending public disclosure by the Google Security Team under a 90-day disclosure deadline; therefore customers are advised to treat this advisory urgently.
• SAMR and LSA man in the middle attacks ("BADLOCK") - Apr 22, 2016
  CVE Number: CVE-2016-2118

  The MS-SAMR and MS-LSAD protocol implementations in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 mishandle DCERPC connections, which allows man-in-the-middle attackers to perform protocol-downgrade attacks and impersonate users by modifying the client-server data stream, aka "BADLOCK."
• OpenSSL Multiple Vulnerabilities (March 2016) - Mar 3, 2016
  CVE Number: CVE-2016-0800, CVE-2016-0705, CVE-2016-0798, CVE-2016-0797, CVE-2016-0799, CVE-2016-0702, CVE-2016-0703, CVE-2016-0704

  Multiple vulnerabilities exist in OpenSSL. For more details, see theoriginal OpenSSL advisory at https://www.openssl.org/news/secadv/20160301.txt.
• glibc getaddrinfo() Stack-Based Buffer Overflow - Feb 18, 2016
  CVE Number: CVE-2015-7547

  A security vulnerability in the GNU C library is having widespread impact in the IT product vendor community. Aruba Networks is affected by this vulnerability and will be issuing multiple software updates.
• ArubaOS Multiple Vulnerabilities - Nov 30, 2015
  CVE Number: CVE-2015-5437

  This advisory covers three vulnerabilities in ArubaOS: Reflected Cross-Site Scripting, Cross-Site Request Forgery, and Crafted frame causes AP-225 reboot.
• Network Time Protocol Daemon (NTPD) Multiple Vulnerabilities - Nov 30, 2015
  CVE Number: CVE-2015-7704, CVE-2015-7705, CVE-2015-7852, CVE-2015-7871

  The NTP Project (www.ntp.org) announced multiple vulnerabilities in NTPD on October 21, 2015. For full details, see http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner. Multiple Aruba products incorporate NTPD and are vulnerable to a subset of the announced vulnerabilities.
• ClearPass Policy Manager Multiple Vulnerabilities - Aug 20, 2015
  CVE Number: CVE-2015-3653, CVE-2015-3654, CVE-2015-3655, CVE-2015-3656, CVE-2015-3657, CVE-2015-4649, CVE-2015-4650

  Multiple vulnerabilities exist in ClearPass Policy Manager. Multiple vulnerabilities in this advisory have a severity of "high". Customers are encouraged to upgrade to ClearPass 6.4.7 or ClearPass 6.5.2 as soon as possible.
• OpenSSL Alternative chains certificate forgery - Jul 10, 2015
  CVE Number: CVE-2015-1793

  On July 9, 2015, the OpenSSL Project reported a high-severity vulnerability in certain versions of OpenSSL. The vulnerability affects processing of certificate trust chains. ClearPass version 6.5.2 was released on June 26, 2015 and contains OpenSSL version 1.0.1o, which is affected by the vulnerability.
• OpenSSL Multiple Vulnerabilities (19 March 2015) - Mar 26, 2015
  CVE Number: CVE-2015-0286, CVE-2015-0289, CVE-2015-0209, CVE-2015-0292

  Multiple vulnerabilities exist in OpenSSL. For more details, see the original OpenSSL advisory at https://www.openssl.org/news/secadv_20150319.txt. This is a preliminary advisory - revisions will be posted as new information becomes available.
• ClearPass Policy Manager Multiple Vulnerabilities - Mar 25, 2015
  CVE Number: CVE-2015-1389, CVE-2015-1392, CVE-2015-1550, CVE-2014-6628, CVE-2015-1551

  Multiple vulnerabilities exist in ClearPass Policy Manager. One of these has a severity of "high".
• AirWave Multiple Vulnerabilities - Mar 18, 2015
  CVE Number: CVE-2015-1390, CVE-2015-1391, CVE-2015-2201, CVE-2015-2202

  Multiple vulnerabilities exist in AirWave.
• Aruba Remote Access Point (RAP) Command Injection - Mar 18, 2015
  CVE Number: CVE-2015-1388

  Aruba has identified a problem with the "RAP Console" feature used in Aruba access points operating in Remote AP mode.
• OpenSSL Multiple Vulnerabilities (08 January 2015) - Feb 5, 2015
  CVE Number: CVE-2014-3571, CVE-2015-0206, CVE-2014-3569, CVE-2014-3572, CVE-2015-0204, CVE-2015-0205, CVE-2014-8275, CVE-2014-3570

  Multiple vulnerabilities exist in OpenSSL. For more details, see the original OpenSSL advisory at https://www.openssl.org/news/secadv_20150108.txt.
• Buffer Overflow in glibc, aka “GHOST” - Feb 5, 2015
  CVE Number: CVE-2015-0235

  Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostbyname or (2) gethostbyname2 function, aka "GHOST".
• Aruba Instant (IAP) Wireless DoS Attack - Jan 27, 2015
  CVE Number: CVE-2015-1348

  Aruba has identified a problem with Aruba Instant firmware which could allow an attacker to crash or clear the configuration of an access point through a wireless interface.
• Unauthenticated SQL Injection Vulnerability in ClearPass Policy Manager - Nov 19, 2014
  CVE Number: CVE-2014-8367

  A component of ClearPass Policy Manager is vulnerable to a read-only SQL injection attack by an unauthenticated user with access to the data network or the management network.
• Aruba ClearPass Multiple Vulnerabilities (October 2014) - Oct 28, 2014
  CVE Number: CVE-2014-5342, CVE-2014-6620, CVE-2014-6621, CVE-2014-6622, CVE-2014-6623, CVE-2014-6624, CVE-2014-6625, CVE-2014-6626, CVE-2014-6627

  Multiple vulnerabilities have been discovered in the Aruba ClearPass product family. Please upgrade to the latest release to resolve the discovered vulnerabilities.
• SSL 3.0 “POODLE” Attack - Oct 14, 2014
  CVE Number: CVE-2014-3566

  On October 14, 2014, the Google Security Team announced a practical attack against the SSL 3.0 protocol that could allow an attacker to recover encrypted plaintext from an HTTPS session. This advisory describes Aruba's exposure to the attack.
• ArubaOS Authentication Bypass Vulnerability - Oct 7, 2014
  CVE Number: CVE-2014-7299

  A vulnerability has been found in some ArubaOS versions that may permit unauthenticated access to administrative interfaces of Aruba controllers.
• GNU bash Shell Multiple Vulnerabilities - Sep 25, 2014
  CVE Number: CVE-2014-6271, CVE-2014-7169, CVE-2014-6277, CVE-2014-6278

  On September 24, 2014, a public announcement was made regarding a vulnerability in the GNU 'bash' shell that could permit remote code execution. This vulnerability was assigned CVE-2014-6271 and fixes were published. The fix was incomplete, and a second vulnerability (CVE-2014-7169) was published. Over the following days, additional vulnerabilities (CVE-2014-6277 and CVE-2014-6278) were also made public.
• OpenSSL Multiple Vulnerabilities (August 2014) - Aug 18, 2014
  CVE Number: CVE-2014-3511

  On August 6, 2014, the OpenSSL Foundation announced multiple vulnerabilities in OpenSSL through the advisory at https://www.openssl.org/news/secadv_20140806.txt. A number of Aruba Networks products make use of OpenSSL. This advisory has been created to describe Aruba's exposure to these vulnerabilities.
• SQL Injection and Credential Disclosure Vulnerability in Aruba Networks ClearPass Policy Manager - Jul 3, 2014
  CVE Number: CVE-2014-4013, CVE-2014-4031

  SQL Injection and Credential Disclosure vulnerabilities have been discovered in Aruba Networks ClearPass Policy Manager. This advisory describes ClearPass' exposure to these vulnerabilities.
• OpenSSL Multiple Vulnerabilities - Jun 6, 2014
  CVE Number: CVE-2014-0224

  On June 5, 2014, the OpenSSL Foundation announced multiple vulnerabilities in OpenSSL through the advisory at http://www.openssl.org/news/secadv_20140605.txt. A number of Aruba Networks products make use of OpenSSL. This advisory has been created to describe Aruba's exposure to these vulnerabilities.
• Apache Struts2 Vulnerability in Aruba Networks ClearPass Policy Manager - May 14, 2014
  CVE Number: CVE-2014-0050, CVE-2014-0094, CVE-2014-0112, CVE-2014-0113

  Denial of Service and code execution vulnerabilities in Apache Struts were revealed through CVE-2014-0050, CVE-2014-0094, CVE-2014-0112, and CVE-2014-0113. These could allow a malicious user to potentially cause a denial of service, or manipulate the ClassLoader thereby allowing remote code execution.
• Privilege Elevation Vulnerability in ClearPass Policy Manager for Authenticated Network Users - May 2, 2014
  CVE Number: CVE-2014-2071, CVE-2014-2593

  If ClearPass is configured to use tunneled and non-tunneled authentication methods within a single policy construct (Service), a network user with independent inner and outer identities could receive elevated network privileges while using a tunneled EAP method to connect to the network.
• OpenSSL 1.0.1 library (Heartbleed) vulnerability - Apr 8, 2014
  CVE Number: CVE-2014-0160

  There is a very serious vulnerability that has been discovered in the OpenSSL 1.0.1 library. This vulnerability can allow an external attacker to extract segments of memory from a remote system without leaving any traces. This memory could contain vital security information, including private keys. These keys, in turn, could be used to mount a man-in-the-middle attack.
• Apache Struts2 Vulnerability in Aruba Networks ClearPass Policy Manager - Aug 1, 2013
  CVE Number: CVE-2013-2248, CVE-2013-2251

  Remote code execution and redirection vulnerabilities in Apache Struts were revealed on 07/20/2013 through CVE-2013-2248 and CVE-2013-2251. These allow a malicious user to execute Struts OGNL expressions using Struts' action/redirect/redirectAction prefixes to evaluate OGNL expressions.
• Sponsor Confirmation Approval Bypass Vulnerability in Aruba Networks ClearPass Guest product - May 8, 2013
  CVE Number: CVE-2013-2269

  When customers use the default settings for Sponsorship Confirmation, there exists a possibility that anyone – not just the sponsor – could approve a request. This could allow unauthorized access to the guest network and whatever access it may have inside the organization.
• Multiple Vulnerabilities in OpenSSL - Apr 26, 2013
  CVE Number: CVE-2013-0166

  On February 5, 2013 the OpenSSL Project issued three vulnerability notices regarding various versions of OpenSSL, an open-source cryptographic library. A number of Aruba Networks products make use of OpenSSL, including ArubaOS, AirWave, and ClearPass Policy Manager. This advisory provides information on how the OpenSSL vulnerabilities affect Aruba customers.
• OS Command Injection Vulnerability in Aruba Remote Access Point Diagnostic Web Interface - Mar 19, 2012
  CVE Number:

  An OS command injection vulnerability has been discovered in the Aruba Remote Access Point's Diagnostic Web Interface. When running the diagnostic web interface, arbitrary system commands can be executed as the root user on the Remote device by an unauthenticated attacker.
• Cross Site Scripting vulnerability in ArubaOS Administration Web Interface - Mar 18, 2012
  CVE Number: CVE-2013-2290

  A persistent Cross Site Scripting vulnerability (XSS) was discovered through which an attacker could plant an AP with maliciously crafted SSID in the general vicinity of the wireless LAN and might be able to trigger a XSS attack in the dashboard section of the ArubaOS Administration WebUI.
• Cross Site Scripting vulnerability in ArubaOS and AirWave Administration Web Interfaces - Jun 7, 2011
  CVE Number:

  A persistent Cross Site Scripting vulnerability (XSS) was discovered where an attacker could plant an AP with maliciously crafted SSID in the general vicinity of the wireless LAN and might be able to trigger a XSS vulnerability in the reporting sections of the ArubaOS and AirWave Administration WebUIs.
• Aruba Mobility Controller – multiple advisories: DoS and authentication bypass - Jan 31, 2011
  CVE Number:

  A Denial of Service (DoS) vulnerability was discovered during standard bug reporting procedures. A malformed 802.11 probe request frame causes a crash on the Access Point (AP) causing a temporary DoS condition for wireless clients. Prior successful security association with the wireless network is not required to cause this condition. The AP recovers automatically by restarting itself.
• TLS Protocol Session Renegotiation Security Vulnerability - Feb 8, 2010
  CVE Number: CVE-2009-3555

  This advisory addresses the renegotiation related vulnerability disclosed recently in Transport Layer Security protocol [1][2]. This vulnerability may allow a Man-in-the-Middle (MITM) attacker to inject arbitrary data into the beginning of the application protocol stream protected by TLS.
• Malformed 802.11 Association Request frame causes Denial of Service condition on an Access Point - Oct 26, 2009
  CVE Number:

  A Denial of Service (DoS) vulnerability was discovered during standard bug reporting procedures. A malformed 802.11 association request frame causes a crash on the Access Point (AP) causing a temporary DoS condition for wireless clients. Prior successful security association with the wireless network is not required to cause this condition. The AP recovers automatically by restarting itself.
• Management User Authentication Bypass Vulnerability When Using Public Key Based SSH Authentication - Apr 23, 2009
  CVE Number:

  A management user authentication bypass vulnerability was discovered during standard internal bug reporting procedures in the Aruba Mobility Controller. This vulnerability only affects customers using public key based SSH authentication for controller management users.
• DoS Vulnerability in Aruba Mobility Controller Caused by Malformed EAP Frame - Dec 8, 2008
  CVE Number:

  A Denial of Service (DoS) vulnerability was discovered during standard bug reporting procedures in the Aruba Mobility Controller. A malformed EAP frame causes a process crash on the Aruba Mobility Controller causing a temporary DoS condition for new clients configured to use EAP authentication. Prior successful security association is not required to cause this condition. The Mobility Controller recovers automatically by restarting the affected process.
• Aruba Mobility Controller TACACS User Authentication and Cross Site Scripting Vulnerabilities - May 14, 2008
  CVE Number:

  A user authentication vulnerability was discovered during standard bug reporting procedures in the Aruba Mobility Controller. This vulnerability only affects customers using TACACS authentication for Controller management users.
• Aruba Mobility Controller User Authentication Vulnerability - Dec 22, 2007
  CVE Number:

  A user authentication vulnerability was discovered during standard bug reporting procedures in the Aruba Mobility Controller. This vulnerability affects customers using versions at or below 2.3.6.15, 2.5.2.11, 2.5.4.25, 2.5.5.7, 3.1.1.3, and 2.4.8.11-FIPS using LDAP authentication for management and VPN (PAP-L2TP) users.
• Aruba Mobility Controller Management Interface Session Cookie Vulnerability - Sep 4, 2007
  CVE Number:

  A session cookie vulnerability was discovered during an internal audit of the Aruba Mobility Controller.
• Aruba Mobility Controller Management Interface Login Pages Cross-Site Scripting - Sep 3, 2007
  CVE Number: CVE-2007-6054

  Persistent XSS on Aruba 800 Mobility Controller's login page.
• Aruba Mobility Controller Management Interface Buffer Overflow - Feb 13, 2007
  CVE Number:

  A buffer overflow vulnerability was discovered during an external security audit of the Aruba Mobility Controller. This vulnerability affects customers using all versions of the Aruba Controller beginning with version 2.4. Certain malformed inputs to the management interfaces (web UI or CLI) will cause the system to crash.
• Aruba Mobility Controller Guest User Privilege Escalation - Feb 13, 2007
  CVE Number:

  A privilege escalation vulnerability was discovered during an external security audit of the Aruba Mobility Controller. This vulnerability affects customers using all versions of the Aruba Controller beginning with version 2.3. Knowledge of this internal account may permit unauthorized access to the wireless LAN via the captive portal or VPN interfaces, as well as access to administrative functions of the Mobility Controller through the CLI and web UI and login interfaces.
• VPN ISAKMP Message Processing Denial of Service - Nov 13, 2005
  CVE Number:

  CERT-FI has released today vulnerabilities in the IKE negotiation found by the tool developed by the Oulu University Secure Programming Group (OUSPG).
• SSH tunneling allowed through Aruba devices - Jun 14, 2005
  CVE Number:

  SSH tunneling (port forwarding) through the Aruba devices is allowed.
• IPsec configurations may be vulnerable to information disclosure - May 10, 2005
  CVE Number: CAN-2005-0039

  The NISCC (UK National Infrastructure Security Co-ordination Centre) has made public an advisory that describes three attacks that apply to certain configurations of IPsec. IP Security (IPsec) is a set of protocols developed by the Internet Engineering Task Force (IETF) to support secure exchange of packets at the IP layer; IPsec has been deployed widely, including wireless lan environments, to implement Virtual Private Networks (VPNs). These three attacks apply to certain IPsec configurations that use Encapsulating Security Payload (ESP) in tunnel mode with confidentiality only, or with integrity protection being provided by a higher layer protocol. Some configurations using AH to provide integrity protection are also vulnerable.
• Risk of multiple Denial of Service attacks using modified ICMP packets - Apr 19, 2005
  CVE Number:

  The Internet Engineering Task Force has made available to the public a document that describes how to use the Internet Control Message protocol to perform multiple Denial of Service (DoS) attacks against the Transmission Control Protocol (TCP), using modified ICMP packets.
• Aruba switches are vulnerable to a PPTP exploit - Feb 10, 2005
  CVE Number:

  Aruba switches are vulnerable to a PPTP exploit, even if the device is not configured to use this VPN feature due to a buffer overflow.
• ISC DHCP contains C includes that define "vsnprintf" to "vsprintf" creating potential buffer overflow conditions - Jun 15, 2004
  CVE Number: CAN-2004-0461

  It was disclaimed by ISC, via CERT, that ISC DHCP contains C includes that define "vsnprintf" to "vsprintf" creating potential buffer overflow conditions.
• ISC DHCPD contains a stack buffer overflow vulnerability in handling log lines containing ASCII characters only - Jun 14, 2004
  CVE Number: CAN-2004-0460

  Specially crafted DHCP packets cause a stack overflow in the Internet Software Consortium (ISC) DHCPD server. Aruba Networks products are not affected by this vulnerability.
• IEEE 802.11 wireless network protocol DSSS CCA algorithm vulnerable to denial of service - Apr 17, 2004
  CVE Number: CVE-2004-0459

  A Denial of Service vulnerability for 802.11 devices was made public on 05/13/2004 by http://www.cert.org. The vulnerability alert disclosed how an attacker using an 802.11 device could mount a denial of service attack exploiting the CCA function of the 802.11 MAC. This attack would cause the 802.11 devices within the physical vicinity of the attacker to assume that the channel is busy and withhold their transmissions.
• SSH vulnerabilities - Nov 18, 2003
  CVE Number:

  Versions of the OpenSSH server prior to 3.7.1 contain buffer management errors. Although the real impact of these vulnerabilities are unclear, they may lead to memory corruption and a possible denial-of-service situation.

Sorry, no results found. Please search again.