A vulnerability in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote malicious user to conduct a stored cross-site scripting (XSS) attack against an administrative user of the interface. A successful exploit allows an malicious user to execute arbitrary script code in a victim's browser in the context of the affected interface in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x: 6.10.7 and below and ClearPass Policy Manager 6.9.x: 6.9.12 and below.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
arubanetworks clearpass policy manager |