Google security engineer Sven Blumenstein has identified over two dozen vulnerabilities affecting several products from HPE-owned network access solutions provider Aruba Networks. The vulnerabilities impact all versions of ArubaOS, AirWave Management Platform 8.x versions prior to 8.2, and Aruba Instant access points prior to 4.1.0 and 4.3.1. Aruba has patched many of the flaws, but some of them cannot be fixed quickly. Security updates for these issues are expected to be released in the third quarter of 2016.
Source: https://www.securityweek.com/over-two-dozen-flaws-found-aruba-products