CVE-2021-26680
N/A
N/A
Summary
A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass web-based management interface allows remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Aruba ClearPass Policy Manager | Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1 | affected |
Weaknesses
- Remote Authenticated Command Injection in ClearPass WebUI
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.