Last weekend, something big happened in the IT industry. That big event is still ongoing.
This is because a zero-day vulnerability (CVE-2021-44228) was discovered in Apache Log4j.
This vulnerability was discovered in Log4j, a logging framework used by most Java software. Because of its widespread use, it poses a high risk. Exploiting this vulnerability could allow a malicious attacker to execute arbitrary code in any application using Log4j.
This means that you can acquire full control of the server or PC.
At KISA Notice regarding this vulnerabilityWe recommend that you take action as soon as possible.
Accordingly, many manufacturers are providing patches along with notifications for products in which vulnerabilities have been discovered, along with vulnerability reports.
Hewlett Packard Enterprise (HPE)와 Arubaposted the information on their website.
In summary, among HPE Aruba's network product line, the only products that have been found to have vulnerabilities to date are versions 7.3 and earlier (E0706P06) of the network management tool Intelligent Management Center (iMC).
In addition, vulnerabilities have also been discovered in NetInsight and SilverPeak Orchestrator, although they are not used domestically.
iMC's hotfix patch is expected to be released in December. Until then, we recommend that you take precautions by referring to the document below.
Additionally, Central's IDS/IPS capabilities, when combined with Aruba 9000 Series gateways, can detect attacks exploiting these vulnerabilities. Aruba SD-Branch's UTM capabilities enable detection and response to attacks targeting security vulnerabilities.
