Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. Successful exploits could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x: 6.10.7 and below and ClearPass Policy Manager 6.9.x: 6.9.12 and below.
References
Link | Resource |
---|---|
https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-020.txt | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: hpe
Published: 2023-01-03T20:05:57.678Z
Updated: 2023-01-05T05:58:57.684130Z
Reserved: 2022-10-20T12:58:24.598Z
Link: CVE-2022-43538
JSON object: View
NVD Information
Status : Modified
Published: 2023-01-05T07:15:13.850
Modified: 2023-11-07T03:53:55.730
Link: CVE-2022-43538
JSON object: View
Redhat Information
No data.
CWE