The ClearPass Policy Manager web interface is affected by a vulnerability that leads to authentication bypass. Upon successful bypass an attacker could then execute an exploit that would allow to remote command execution in the underlying operating system. Resolution: Fixed in 6.7.13-HF, 6.8.5-HF, 6.8.6, 6.9.1 and higher.
Recent assessments:
wvu-r7 at September 23, 2020 5:26pm UTC reported:
> Arubaβs ClearPass Policy Manager, part of the Aruba 360 Secure Fabric, provides role- and device-based secure network access control for IoT, BYOD, corporate devices, as well as employees, contractors and guests across any multivendor wired, wireless and VPN infrastructure.
<https://www.arubanetworks.com/assets/ds/DS_ClearPass_PolicyManager.pdf>
Unauthed RCE in NAC software. Not sure how common this one is, but itβs name-brand software, so expect to see it on enterprise networks. High-impact target if compromised, since NAC is tightly integrated with the network.
Detailed writeup here.
Assessed Attacker Value: 5
Assessed Attacker Value: 5Assessed Attacker Value: 5