Security

Hi All,

As an Aruba partner, we are being asked a lot about the Spring Framework zero day vulnerability.

Is anyone aware if any of the Aruba products are effected by this? I cant see why any of them would be effected, but would just like confirmation.

Thanks,

------------------------------
Ben Casey
------------------------------

Please email sirt@arubanetworks.com

https://www.arubanetworks.com/support-services/sirt/

------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.
------------------------------

Original Message:
Sent: Apr 01, 2022 06:05 AM
From: Ben Casey
Subject: Spring Framework

Hi All,

As an Aruba partner, we are being asked a lot about the Spring Framework zero day vulnerability.

Is anyone aware if any of the Aruba products are effected by this? I cant see why any of them would be effected, but would just like confirmation.

Thanks,

------------------------------
Ben Casey
------------------------------

For anyone that's curious, this was the response from Aruba SIRT, I'll post any updates here.



------------------------------
Ben Casey
------------------------------

Original Message:
Sent: Apr 01, 2022 01:50 PM
From: Colin Joseph
Subject: Spring Framework

Please email sirt@arubanetworks.com

https://www.arubanetworks.com/support-services/sirt/

------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

Original Message:
Sent: Apr 01, 2022 06:05 AM
From: Ben Casey
Subject: Spring Framework

Hi All,

As an Aruba partner, we are being asked a lot about the Spring Framework zero day vulnerability.

Is anyone aware if any of the Aruba products are effected by this? I cant see why any of them would be effected, but would just like confirmation.

Thanks,

------------------------------
Ben Casey
------------------------------

Hi Ben,

Did you get an answer for this question from SIRT?

Thank you,

Jeremy

------------------------------
Jeremy Lasher
------------------------------

Original Message:
Sent: Apr 01, 2022 06:05 AM
From: Ben Casey
Subject: Spring Framework

Hi All,

As an Aruba partner, we are being asked a lot about the Spring Framework zero day vulnerability.

Is anyone aware if any of the Aruba products are effected by this? I cant see why any of them would be effected, but would just like confirmation.

Thanks,

------------------------------
Ben Casey
------------------------------

Hi Jeremy,

Sadly I wasn't able to chase this up yet.

I have just sent them an email now and i will update this thread once I get a response for you.

Thanks,
Ben

------------------------------
Ben Casey
------------------------------

Original Message:
Sent: Apr 04, 2022 11:09 AM
From: Jeremy Lasher
Subject: Spring Framework

Hi Ben,

Did you get an answer for this question from SIRT?

Thank you,

Jeremy

------------------------------
Jeremy Lasher

Original Message:
Sent: Apr 01, 2022 06:05 AM
From: Ben Casey
Subject: Spring Framework

Hi All,

As an Aruba partner, we are being asked a lot about the Spring Framework zero day vulnerability.

Is anyone aware if any of the Aruba products are effected by this? I cant see why any of them would be effected, but would just like confirmation.

Thanks,

------------------------------
Ben Casey
------------------------------

In the meanwhile, there is a bulletin posted on https://www.arubanetworks.com/support-services/security-bulletins/ which shows No affected products.

------------------------------
Herman Robers
------------------------
If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
------------------------------

Original Message:
Sent: Apr 05, 2022 03:56 AM
From: Ben Casey
Subject: Spring Framework

Hi Jeremy,

Sadly I wasn't able to chase this up yet.

I have just sent them an email now and i will update this thread once I get a response for you.

Thanks,
Ben

------------------------------
Ben Casey

Original Message:
Sent: Apr 04, 2022 11:09 AM
From: Jeremy Lasher
Subject: Spring Framework

Hi Ben,

Did you get an answer for this question from SIRT?

Thank you,

Jeremy

------------------------------
Jeremy Lasher

Original Message:
Sent: Apr 01, 2022 06:05 AM
From: Ben Casey
Subject: Spring Framework

Hi All,

As an Aruba partner, we are being asked a lot about the Spring Framework zero day vulnerability.

Is anyone aware if any of the Aruba products are effected by this? I cant see why any of them would be effected, but would just like confirmation.

Thanks,

------------------------------
Ben Casey
------------------------------