Arubanetworks: >> Clearpass Policy Manager >> 6.10.8 Security Vulnerabilities
A vulnerability exists in ClearPass Policy Manager that allows for an attacker with administrative privileges to access sensitive information in a cleartext format. A successful exploit allows an attacker to retrieve information which could be used to potentially gain further access to network services supported by ClearPass Policy Manager.
CVSS Score
4.5
EPSS Score
0.001
Published
2023-03-22
A vulnerability in the web-based management interface of ClearPass Policy Manager could allow an unauthenticated remote attacker to create arbitrary users on the platform. A successful exploit allows an attacker to achieve total cluster compromise.
CVSS Score
9.8
EPSS Score
0.009
Published
2023-03-22
A vulnerability in the ClearPass OnGuard Linux agent could allow malicious users on a Linux instance to elevate their user privileges to those of a higher role. A successful exploit allows malicious users to execute arbitrary code with root level privileges on the Linux instance.
CVSS Score
7.8
EPSS Score
0.0
Published
2023-03-22
Page 3