CVE-2017-5824HP Aruba Clearpass Policy Manager vulnerability

3 documents3 sources
Severity
9.8CRITICALNVD
EPSS
24.1%
top 3.93%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
HP Aruba Clearpass Policy ManagerHewlett Packard Enterprise Aruba Clearpass Policy Manager
Timeline
PublishedFeb 15
Latest updateMay 14

Description

An unauthenticated remote code execution vulnerability in HPE Aruba ClearPass Policy Manager version 6.6.x was found.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-mw7h-785m-797f: An unauthenticated remote code execution vulnerability in HPE Aruba ClearPass Policy Manager version 62022-05-14
CVEList
CVE-2017-5824: An unauthenticated remote code execution vulnerability in HPE Aruba ClearPass Policy Manager version 62018-02-15
CVE-2017-5824 — HP vulnerability | cvebase