A authenticated remote command injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): 6.10.4 and below, 6.9.9 and below, 6.8.9-HF2 and below, 6.7.x and below. Aruba has released updates to ClearPass Policy Manager that address this security vulnerability.
2022-05-16T20:15:15.500
2024-11-21T06:49:02.777
Modified
CVSSv3.1: 9.1 (CRITICAL)
AV:N/AC:L/Au:S/C:C/I:C/A:C
8.0
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | arubanetworks | clearpass_policy_manager | < 6.8.9 | Yes |
| Application | arubanetworks | clearpass_policy_manager | < 6.9.10 | Yes |
| Application | arubanetworks | clearpass_policy_manager | < 6.10.5 | Yes |
| Application | arubanetworks | clearpass_policy_manager | 6.8.9 | Yes |
| Application | arubanetworks | clearpass_policy_manager | 6.8.9 | Yes |
| Application | arubanetworks | clearpass_policy_manager | 6.8.9 | Yes |