CVE-2020-7114
N/A
N/A
Summary
A vulnerability exists allowing attackers, when present in the same network segment as ClearPass' management interface, to make changes to certain databases in ClearPass by crafting HTTP packets. As a result of this attack, a possible complete cluster compromise might occur. Resolution: Fixed in 6.7.13, 6.8.4, 6.9.0 and higher.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | ClearPass Policy Manager | ClearPass 6.8.x prior to 6.8.5 ClearPass 6.7.x prior to 6.7.13 | affected |
Weaknesses
- network database compromise
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.