First published: Wed Apr 28 2021(Updated: )
A remote insecure deserialization vulnerability was discovered in Aruba AirWave Management Platform version(s) prior to 8.2.12.1. Aruba has released patches for AirWave Management Platform that address this security vulnerability.
Credit: security-alert@hpe.com
Affected Software | Affected Version | How to fix |
---|---|---|
Arubanetworks Airwave | <8.2.12.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this insecure deserialization vulnerability is CVE-2021-25152.
The affected software for this vulnerability is Aruba AirWave Management Platform versions prior to 8.2.12.1.
The severity of CVE-2021-25152 is critical with a CVSS score of 7.2.
To fix the insecure deserialization vulnerability in Aruba AirWave Management Platform, update to version 8.2.12.1 or later, which includes the necessary security patches.
More information about the insecure deserialization vulnerability in Aruba AirWave Management Platform can be found at the following reference: [Aruba AirWave Management Platform Insecure Deserialization Vulnerability](https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2021-010.txt).