Aruba access points running AOS-8 and AOS-10 need to be patched urgently after HPE emitted fixes for three critical flaws in its networking subsidiary’s networking access points. The issues would allow an unauthenticated attacker to run code on Aruba’s systems by sending carefully crafted packets to UDP port 8211, the operating system’s Proprietary Access Protocol Interface (PAPI), which would provide that miscreant privileged access to the equipment.

Source: The Register