CVE-2018-7059
Aruba ClearPass prior to 6.6.9 contains an API vulnerability that can be exploited by an authenticated user with the small‑set “mon” permission to obtain cluster credentials and escalate privileges. The issue specifically affects the API used to coordinate cluster actions; exploitation is limited...