Vulnerabilities in the web-based management interface of ClearPass Policy Manager allow an attacker with read-only privileges to perform actions that change the state of the ClearPass Policy Manager instance. Successful exploitation of these vulnerabilities allow an attacker to complete state-changing actions in the web-based management interface that should not be allowed by their current level of authorization on the platform.
References
Link | Resource |
---|---|
https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-016.txt | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: hpe
Published: 2023-10-24T18:11:58.092Z
Updated: 2023-10-24T18:11:58.092Z
Reserved: 2023-09-19T14:41:06.499Z
Link: CVE-2023-43508
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-10-25T18:17:31.990
Modified: 2023-11-01T16:21:53.443
Link: CVE-2023-43508
JSON object: View
Redhat Information
No data.
CWE