Lucene search

CVE-2023-25593

🗓️ 22 Mar 2023 06:10:15Reported by hpeType

Vulnerabilities in ClearPass Policy Manager web interface allow remote XSS attack, enabling execution of arbitrary script code

Reporter	Title	Published	Views	Family All 4
Prion	Cross site scripting	22 Mar 202306:15	–	prion
Vulnrichment	CVE-2023-25593 Reflected Cross Site Scripting Vulnerabilities (XSS) in ClearPass Policy Manager Web-Based Management Interface	14 Mar 202314:52	–	vulnrichment
NVD	CVE-2023-25593	22 Mar 202306:15	–	nvd
Cvelist	CVE-2023-25593 Reflected Cross Site Scripting Vulnerabilities (XSS) in ClearPass Policy Manager Web-Based Management Interface	14 Mar 202314:52	–	cvelist

Nvd

Node

arubanetworks clearpass_policy_managerRange6.9.0–6.9.13

arubanetworks clearpass_policy_managerRange6.10.0–6.10.8

arubanetworks clearpass_policy_managerMatch6.11.0

arubanetworks clearpass_policy_managerMatch6.11.1

[
  {
    "defaultStatus": "unaffected",
    "product": "Aruba ClearPass Policy Manager",
    "vendor": "Hewlett Packard Enterprise (HPE)",
    "versions": [
      {
        "status": "affected",
        "version": "6.11.1 and below"
      },
      {
        "status": "affected",
        "version": "6.10.8 and below"
      },
      {
        "status": "affected",
        "version": "6.9.13 and below"
      }
    ]
  }
]

Source	Link
arubanetworks	www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-003.txt

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

22 Mar 2023 06:15Current

6.1Medium risk

Vulners AI Score6.1

CVSS36.1 - 7.1

EPSS0.00104

SSVC

CWE-79