CVE-2018-7058 in ClearPassinfo

Summary

Aruba ClearPass, all versions of 6.6.x prior to 6.6.9 are affected by an authentication bypass vulnerability, an attacker can leverage this vulnerability to gain administrator privileges on the system. The vulnerability is exposed only on ClearPass web interfaces, including administrative, guest captive portal, and API. Customers who do not expose ClearPass web interfaces to untrusted users are impacted to a lesser extent.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

02/14/2018

Disclosure

08/06/2018

Moderation

VulDB entry created

Entries

1: VDB-122693

CPE

ready

CWE

CWE-287 (Confirmed)

CVSS

8.5

EPSS

0.00870

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2018-7058
NVD	https://nvd.nist.gov/vuln/detail/CVE-2018-7058
CVE Details	https://www.cvedetails.com/cve/CVE-2018-7058/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!