CVE-2021-25152
First published: Wed Apr 28 2021(Updated: )
A remote insecure deserialization vulnerability was discovered in Aruba AirWave Management Platform version(s) prior to 8.2.12.1. Aruba has released patches for AirWave Management Platform that address this security vulnerability.
Credit: security-alert@hpe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Arubanetworks Airwave | <8.2.12.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this insecure deserialization vulnerability?
The vulnerability ID for this insecure deserialization vulnerability is CVE-2021-25152.
What is the affected software for this vulnerability?
The affected software for this vulnerability is Aruba AirWave Management Platform versions prior to 8.2.12.1.
What is the severity of CVE-2021-25152?
The severity of CVE-2021-25152 is critical with a CVSS score of 7.2.
How can I fix the insecure deserialization vulnerability in Aruba AirWave Management Platform?
To fix the insecure deserialization vulnerability in Aruba AirWave Management Platform, update to version 8.2.12.1 or later, which includes the necessary security patches.
Where can I find more information about the insecure deserialization vulnerability in Aruba AirWave Management Platform?
More information about the insecure deserialization vulnerability in Aruba AirWave Management Platform can be found at the following reference: [Aruba AirWave Management Platform Insecure Deserialization Vulnerability](https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2021-010.txt).
- collector/nvd-index
- vendor/arubanetworks
- canonical/arubanetworks airwave