Authentication flaw

2014-11-1918:59:00

PRIOn knowledge base

www.prio-n.com

7.8 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

77.1%

JSON

Aruba Networks ClearPass before 6.3.6 and 6.4.x before 6.4.1 does not properly restrict access to unspecified administrative functions, which allows remote attackers to bypass authentication and execute administrative actions via unknown vectors.

CPENameOperatorVersion
clearpassle6.3.4
clearpasseq6.4.0

CPE	Name	Operator	Version
	clearpass	le	6.3.4
	clearpass	eq	6.4.0

References

secunia.com/advisories/61916

www.arubanetworks.com/support/alerts/aid-10282014.txt