Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Aruba ClearPass prior to 6.6.9 has a vulnerability in the API that helps to coordinate cluster actions. An authenticated user with the "mon" permission could use this vulnerability to obtain cluster credentials which could allow privilege escalation. This vulnerability is only present when authenticated as a user with "mon" permission.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Aruba ClearPass 安全漏洞
Vulnerability Description
Aruba ClearPass是美国安移通网络(Aruba Networks)公司的一套集成了网络控制功能、应用和设备管理功能的接入管理系统。该系统可在单一位置管理与BYOD(自带设备)相关的各种事宜。 Aruba ClearPass 6.6.9之前版本的API接口(用于协调集群操作)中存在安全漏洞。攻击者可利用该漏洞获取集群的凭证,进而提升权限。
CVSS Information
N/A
Vulnerability Type
N/A