HPE Aruba Networking has addressed critical buffer overflow bugs in ArubaOS, enabling remote code execution (RCE) on affected systems. The four critical vulnerabilities allow attackers to execute arbitrary code through the Process Application Programming Interface (PAPI) UDP port, impacting various Aruba devices and software versions. Security updates are advised to mitigate potential threats, with temporary solutions such as enabling Enhanced PAPI Security for ArubaOS 8
x users. https://thehackernews.com/2024/05/four-critical-vulnerabilities-expose.html