Lucene search
SAINT CorporationSAINT:DF69532319D5633A7EE77A71E5C0B2FEHistoryAug 13, 2020 - 12:00 a.m.
Aruba ClearPass Policy Manager tipsSimulationUpload command execution
2020-08-1300:00:00
SAINT Corporation
download.saintcorporation.com
191
0.948 High
EPSS
Percentile
99.3%
Added: 08/13/2020
CVE: CVE-2020-7115
Background
Aruba ClearPass is a network access control solution.
Problem
A vulnerability in the **tipsSimulationUpload.action** resource allows remote attackers to execute arbitrary commands by uploading a shared object library in the **uploadClientCertFile** parameter.
Resolution
Upgrade ClearPass Policy Manager to version 6.7.13-HF, 6.8.5-HF, 6.8.6, or 6.9.1 or higher.
References
<https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-005.txt>
Platforms
Linux
Related
packetstorm
packetstorm
ClearPass Policy Manager Unauthenticated Remote Command Execution
2020-07-08 00:00:00
cve
cve
CVE-2020-7115
2020-06-03 13:15:11
checkpoint_advisories
checkpoint_advisories
prion
prion
Authentication flaw
2020-06-03 13:15:00
githubexploit
githubexploit
attackerkb
attackerkb
CVE-2020-7115
2020-06-03 00:00:00
cvelist
cvelist
CVE-2020-7115
2020-06-03 12:43:13
saint
saint
Aruba ClearPass Policy Manager tipsSimulationUpload command execution
2020-08-13 00:00:00
Aruba ClearPass Policy Manager tipsSimulationUpload command execution
2020-08-13 00:00:00
zdt
zdt
nvd
nvd
CVE-2020-7115
2020-06-03 13:15:11
exploitdb
exploitdb
