Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistHpeCVELIST:CVE-2017-9002
HistoryAug 06, 2018 - 8:00 p.m.

CVE-2017-9002

2018-08-0620:00:00
hpe
www.cve.org
4

AI Score

6.2

Confidence

High

EPSS

0.001

Percentile

25.4%

JSON

All versions of Aruba ClearPass prior to 6.6.8 contain reflected cross-site scripting vulnerabilities. By exploiting this vulnerability, an attacker who can trick a logged-in ClearPass administrative user into clicking a link could obtain sensitive information, such as session cookies or passwords. The vulnerability requires that an administrative users click on the malicious link while currently logged into ClearPass in the same browser.

CNA Affected

[
  {
    "product": "Aruba ClearPass",
    "vendor": "Hewlett Packard Enterprise",
    "versions": [
      {
        "status": "affected",
        "version": "All versions prior to v6.6.8"
      }
    ]
  }
]

Related

prion 1
nvd 1
cve 1
prion
prion
Cross site scripting
2018-08-06 20:29:00
nvd
nvd
CVE-2017-9002
2018-08-06 20:29:01
cve
cve
CVE-2017-9002
2018-08-06 20:29:01

AI Score

6.2

Confidence

High

EPSS

0.001

Percentile

25.4%

JSON
Related for CVELIST:CVE-2017-9002
prion1nvd1cve1