CVE-2015-3655

2017-08-2915:00:00

mitre

www.cve.org

AI Score

Confidence

High

EPSS

0.001

Percentile

32.4%

JSON

Cross-site request forgery (CSRF) vulnerability in Aruba Networks ClearPass Policy Manager before 6.4.7 and 6.5.x before 6.5.2 allows remote attackers to hijack the authentication of administrators by leveraging improper enforcement of the anti-CSRF token.

References

www.arubanetworks.com/assets/alert/ARUBA-PSA-2015-009.txt

www.securityfocus.com/bid/100594