cbcvebase.
CVE-2014-6621
published 2014-11-19

CVE-2014-6621: Aruba Networks ClearPass before 6.3.6 and 6.4.x before 6.4.1 does not disable the troubleshooting and diagnostics page in production systems, which allows…

PriorityP421medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
1.17%
63.6th percentile
Aruba Networks ClearPass before 6.3.6 and 6.4.x before 6.4.1 does not disable the troubleshooting and diagnostics page in production systems, which allows remote attackers to obtain version numbers, module configuration, and other sensitive information by reading the page.

Affected

2 ranges
VendorProductVersion rangeFixed in
arubanetworksclearpass<= 6.3.4
arubanetworksclearpass
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.