N/A

A remote arbitrary command execution vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): Prior to 8.6.0.4-2.2.0.6; Prior to 8.7.1.4, 8.6.0.7, 8.5.0.12, 8.3.0.16. Aruba has released patches for Aruba SD-WAN Software and Gateways and ArubaOS that address this security vulnerability.

N/A

N/A

Aruba Networks ArubaOS 命令注入漏洞

Aruba Networks ArubaOS是美国安移通网络（Aruba Networks）公司的一套面向Aruba Mobility-Defined Networks（包括移动控制器和移动接入交换机）的操作系统。 Aruba Networks ArubaOS存在命令注入漏洞，该漏洞源于应用对某些NTFS元数据的不正确验证造成的，这些元数据可能会导致缓冲区溢出，从而可能被攻击者利用。

N/A

N/A