CVE-2014-6625Improper Access Control in Clearpass

CWE-284Improper Access Control3 documents3 sources
Severity
9.0CRITICALNVD
EPSS
0.4%
top 37.95%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Arubanetworks Clearpass
Timeline
PublishedNov 19
Latest updateMay 17

Description

The Policy Manager in Aruba Networks ClearPass before 6.3.6 and 6.4.x before 6.4.1 allows remote authenticated users to gain privileges via unspecified vectors.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 8.0 | Impact: 10.0

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-63w4-j4cp-rwj8: The Policy Manager in Aruba Networks ClearPass before 62022-05-17
CVEList
CVE-2014-6625: The Policy Manager in Aruba Networks ClearPass before 62014-11-19
CVE-2014-6625 — Improper Access Control in Clearpass | cvebase