Aruba Products Multiple Vulnerabilities

Medium4

Details

Multiple vulnerabilities were identified in Aruba Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, remote code execution, sensitive information disclosure and security restriction bypass on the targeted system.

Impact

Remote Code Execution
Denial of Service
Security Restriction Bypass
Information Disclosure

System / Technologies affected

ArubaOS 10.5.0.1 and below
ArubaOS 10.4.0.3 and below
ArubaOS 8.11.2.0 and below
ArubaOS 8.10.0.9 and below

Solutions

Before installation of the software, please visit the software vendor web-site for more details.
Apply fixes issued by the vendor:

https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2024-002.txt

Vulnerability Identifier

CVE-2024-1356
CVE-2024-25611
CVE-2024-25612
CVE-2024-25613
CVE-2024-25614
CVE-2024-25615
CVE-2024-25616

Reference

https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2024-002.txt

https://www.hkcert.org/security-bulletin/aruba-products-multiple-vulnerabilities_20240306

Details

Impact

System / Technologies affected

Solutions

Vulnerability Identifier

Reference

Chinese Government Moving Away from Intel and AMD Chips

iPhone Rumored to Feature Baidu AI Chatbot in China

F5 Products Denial of Service Vulnerability

Details

Impact

System / Technologies affected

Solutions

Vulnerability Identifier

Reference

Chinese Government Moving Away from Intel and AMD Chips

Windows Notepad to Receive Spelling Check and Auto-Correction Features

iPhone Rumored to Feature Baidu AI Chatbot in China

F5 Products Denial of Service Vulnerability

US Department of Justice and 16 States Sue Apple for Smartphone Market Monopoly