VYPR
High severity8.8NVD Advisory· Published Aug 6, 2018· Updated Jun 17, 2026

CVE-2018-7060

CVE-2018-7060

Description

Aruba ClearPass 6.6.x prior to 6.6.9 and 6.7.x prior to 6.7.1 is vulnerable to CSRF attacks against authenticated users. An attacker could manipulate an authenticated user into performing actions on the web administrative interface.

Affected products

2
  • Arubanetworks/Clearpassllm-create2 versions
    >=6.6, <6.6.9 / >=6.7, <6.7.1+ 1 more
    • (no CPE)range: >=6.6, <6.6.9 / >=6.7, <6.7.1
    • (no CPE)range: 6.6.x prior to 6.6.9 and 6.7.x prior to 6.7.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.