HPE ArubaOS
Easy fix7 remedies
cpe:2.3:o:hpe:arubaos:*:*:*:*:*:*:*
Easy fix7 remedies
- <= 10.8.0.0
- <= 10.7.2.2
- <= 10.4.1.10
- <= 8.13.1.1
- <= 8.12.0.6
- <= 8.10.0.21
- ~10.6
- ~10.5
- ~10.3
- ~8.12
- ~8.11
- ~8.9
- ~8.8
- ~8.7
- ~8.6
- ~6.5.4
- ~8.7.0.0-2.3.0
- ~8.6.0.4-2.2.x
HPE Aruba Networking AOS-8 and AOS-10 Stack-Based Buffer Overflow Vulnerability in Management Services via Command-Line Interface
Vulnerability
Patched
A stack-based buffer overflow vulnerability has been identified in multiple management service components of HPE Aruba Networking's AOS-8 and AOS-10 Operating Systems. This vulnerability is accessible through the command-line interface. An authenticated attacker with administrative privileges could exploit this vulnerability by sending specially crafted requests to the affected services. Successful exploitation would allow the attacker to execute arbitrary code with elevated privileges on the underlying operating system.
Impact
Exploitation of this vulnerability could lead to unauthorized execution of arbitrary code with elevated privileges on the affected system.
Remediation
To address this vulnerability, upgrade to AOS-10.8.x.x (10.8.0.1 and above), AOS-10.7.x.x (10.7.2.3 and above), AOS-10.4.x.x (10.4.1.11 and above), AOS-8.13.x.x (8.13.1.2 and above), AOS-8.12.x.x (8.12.0.7 and above) or AOS-8.10.x.x (8.10.0.22 and above).
Added: May 12, 2026, 8:38 PM
Updated: May 12, 2026, 8:38 PM
Vulnerability Rating
Custom Algorithm
spread
6.8impact
7.5exploitability
3.8remediation
8.3relevance
8.1threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.