Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. Successful exploits could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x: 6.10.7 and below and ClearPass Policy Manager 6.9.x: 6.9.12 and below.
References
Link | Resource |
---|---|
https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-020.txt | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: hpe
Published: 2023-01-03T20:04:49.995Z
Updated: 2023-01-05T05:58:57.684130Z
Reserved: 2022-10-20T12:58:24.597Z
Link: CVE-2022-43537
JSON object: View
NVD Information
Status : Modified
Published: 2023-01-05T07:15:13.710
Modified: 2023-11-07T03:53:55.647
Link: CVE-2022-43537
JSON object: View
Redhat Information
No data.
CWE