Lucene search
MitreCVE-2014-6621HistoryNov 19, 2014 - 6:59 p.m.
CVE-2014-6621
2014-11-1918:59:01
CWE-200
mitre
web.nvd.nist.gov
19
aruba networks
clearpass
cve-2014-6621
security vulnerability
remote attack
sensitive information
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.4
Confidence
Low
EPSS
0.003
Percentile
69.4%
Aruba Networks ClearPass before 6.3.6 and 6.4.x before 6.4.1 does not disable the troubleshooting and diagnostics page in production systems, which allows remote attackers to obtain version numbers, module configuration, and other sensitive information by reading the page.
Affected configurations
Node
arubanetworksclearpassRange≤6.3.4
ORarubanetworksclearpassMatch6.4.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| arubanetworks | clearpass | * | cpe:2.3:a:arubanetworks:clearpass:*:*:*:*:*:*:*:* |
| arubanetworks | clearpass | 6.4.0 | cpe:2.3:a:arubanetworks:clearpass:6.4.0:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2014-6621
2014-11-19 18:00:00
prion
prion
Code injection
2014-11-19 18:59:00
nvd
nvd
CVE-2014-6621
2014-11-19 18:59:01
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.4
Confidence
Low
EPSS
0.003
Percentile
69.4%
Related for CVE-2014-6621