CVE-2020-7119

Summary

A vulnerability exists in the Aruba Analytics and Location Engine (ALE) web management interface 2.1.0.2 and earlier firmware that allows an already authenticated administrative user to arbitrarily modify files as an underlying privileged operating system user.

Affected Software

VendorProductVersion RangeStatus
n/aAruba ALE ClearPass C1000 S-1200 R4 HW-Based ApplianceFirmware 2.1.0.2 and earlieraffected

Weaknesses

  • Remote Arbitrary File Modification

ADP Enrichment

CVE Program Container

Additional References

References