N/A

Aruba ClearPass, all versions of 6.6.x prior to 6.6.9 are affected by an authentication bypass vulnerability, an attacker can leverage this vulnerability to gain administrator privileges on the system. The vulnerability is exposed only on ClearPass web interfaces, including administrative, guest captive portal, and API. Customers who do not expose ClearPass web interfaces to untrusted users are impacted to a lesser extent.

N/A

N/A

Aruba ClearPass 安全漏洞

Aruba ClearPass是美国安移通网络（Aruba Networks）公司的一套集成了网络控制功能、应用和设备管理功能的接入管理系统。该系统可在单一位置管理与BYOD(自带设备)相关的各种事宜。 Aruba ClearPass 6.6.9之前的6.6.x版本中的ClearPass web界面存在安全漏洞。攻击者可利用该漏洞获取管理员权限。

N/A

N/A