Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
All versions of Aruba ClearPass prior to 6.6.8 contain reflected cross-site scripting vulnerabilities. By exploiting this vulnerability, an attacker who can trick a logged-in ClearPass administrative user into clicking a link could obtain sensitive information, such as session cookies or passwords. The vulnerability requires that an administrative users click on the malicious link while currently logged into ClearPass in the same browser.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Aruba ClearPass 跨站脚本漏洞
Vulnerability Description
Aruba ClearPass是美国安移通网络(Aruba Networks)公司的一套集成了网络控制功能、应用和设备管理功能的接入管理系统。该系统可在单一位置管理与BYOD(自带设备)相关的各种事宜。 Aruba ClearPass 6.6.8之前版本中存在跨站脚本漏洞。远程攻击者可通过诱使登录的ClearPass管理用户点击链接利用该漏洞获取敏感信息(会话cookies或密码)。
CVSS Information
N/A
Vulnerability Type
N/A