<ul><li>Hewlett Packard Enterprise (HPE) has released a patch for six serious security vulnerabilities affecting Aruba Networking Access Points.</li><li>The vulnerabilities could allow for authenticated remote command execution attacks, arbitrary file creation, unauthenticated command injection, and more. Two of the vulnerabilities (CVE-2024-42509 and CVE-2024-47460) were particularly dangerous.</li><li>The affected products include AOS-10.4.x.x, Instant AOS-8.12.x.x, and Instant AOS-8.10.x.x. Users are advised to update their access points to the recommended versions.</li><li>Workarounds include blocking access to UDP port 8211, restricting access to management interfaces, and implementing firewall policies.</li></ul>

HPE reveals critical security bug affecting networking access points

Discover more