From cybersecuritynews.com
![TLStorm 2.0](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgKMLeZ3AoF4jxkG_o9svoQbt-gedX5-gDTjNXvE2vGF3h4KHNzqXFg-vXuoH2wopNr2HyVjCC7XMGW8tK4-l4EyQzEYKbzocNbtS1fpls9t65QAwycSXkokTWxIib-iUeUHarDMRuJIPSDZZs3qbsmzCdByiKTYge5deZl5sxbIspHs-TiP73MG4twjA/s16000/Critical%20TLStorm%202.0%20Bugs%20Let%20Attackers%20to%20gain%20remote%20access%20to%20enterprise%20networks.png)
In multiple models of both Aruba and Avaya switches, Armis has detected five vulnerabilities relating to the implementation of TLS communications.
Using these vulnerabilities, there is a possibility that remote access could be gained to networks of enterprise companies, and confidential information could be stolen.
Following the disclosure of TLStorm last March, these findings serve as a follow-up. An attacker may be able to take control and, worse, damage the appliances via three critical flaws found in APC Smart-UPS devices.
NanoSSL, a popular TLS library offered by Mocana, was used inappropriately as the source of these vulnerabilities.