Описание
A vulnerability in the HPE Aruba Networking ClearPass Policy Manager web-based management interface could allow an authenticated remote threat actor to conduct a remote code execution attack. Successful exploitation could enable the attacker to run arbitrary commands on the underlying operating system.
Уязвимые конфигурации
Конфигурация 1Версия от 6.11.0 (включая) до 6.11.10 (исключая)Версия от 6.12.0 (включая) до 6.12.3 (исключая)
Одно из
cpe:2.3:a:arubanetworks:clearpass_policy_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:arubanetworks:clearpass_policy_manager:*:*:*:*:*:*:*:*
EPSS
Процентиль: 75%
0.0088
Низкий
7.2 High
CVSS3
8.8 High
CVSS3
Дефекты
CWE-77
Связанные уязвимости
CVSS3: 7.2
github
около 1 года назад
A vulnerability in the HPE Aruba Networking ClearPass Policy Manager web-based management interface could allow an authenticated remote threat actor to conduct a remote code execution attack. Successful exploitation could enable the attacker to run arbitrary commands on the underlying operating system.
EPSS
Процентиль: 75%
0.0088
Низкий
7.2 High
CVSS3
8.8 High
CVSS3
Дефекты
CWE-77