A remote execution of arbitrary commands vulnerability was discovered in some Aruba Instant Access Point (IAP) products in version(s): Aruba Instant 6.4.x: 184.108.40.206-220.127.116.11 and below; Aruba Instant 6.5.x: 18.104.22.168 and below; Aruba Instant 8.3.x: 22.214.171.124 and below; Aruba Instant 8.5.x: 126.96.36.199 and below; Aruba Instant 8.6.x: 188.8.131.52 and below; Aruba Instant 8.7.x: 184.108.40.206 and below. Aruba has released patches for Aruba Instant that address this security vulnerability.
Reference Links(if available):
CVSS Score (if available)
v2: / MEDIUMAV:N/AC:M/Au:N/C:C/I:C/A:C
v3: / HIGHCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H