Lucene search

HpeCVELIST:CVE-2022-23675

HistoryMay 17, 2022 - 5:58 p.m.

CVE-2022-23675

2022-05-1717:58:58

hpe

www.cve.org

aruba

clearpass

xss

vulnerability

remote

authenticated

stored

security

AI Score

Confidence

High

EPSS

0.001

Percentile

29.2%

JSON

A remote authenticated stored cross-site scripting (xss) vulnerability was discovered in Aruba ClearPass Policy Manager version(s): 6.10.4 and below, 6.9.9 and below, 6.8.9-HF2 and below, 6.7.x and below. Aruba has released updates to ClearPass Policy Manager that address this security vulnerability.

CNA Affected

[
  {
    "product": "Aruba ClearPass Policy Manager",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "6.10.4 and below, 6.9.9 and below, 6.8.9-HF2 and below, 6.7.x and below"
      }
    ]
  }
]

References

www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-007.txt