CVE-2023-25591
Authenticated Information Disclosure in ClearPass Policy Manager Web-Based Management Interface
A vulnerability in the web-based management interface of ClearPass Policy Manager could allow a remote attacker authenticated with low privileges to access sensitive information. A successful exploit allows an attacker to retrieve information which could be used to potentially gain further privileges on the ClearPass instance.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
Productos afectados
Hewlett Packard Enterprise (HPE) · Aruba ClearPass Policy Manager¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →