Unrated severityNVD Advisory· Published Feb 27, 2024· Updated Nov 7, 2024
CVE-2024-26300
CVE-2024-26300
Description
A vulnerability in the guest interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against an administrative user of the interface. A successful exploit allows an attacker to execute arbitrary script code in a victim's browser in the context of the affected interface.
Affected products
2- Hewlett Packard Enterprise (HPE)/Aruba ClearPass Policy Managerv5Range: ClearPass Policy Manager 6.12.x: 6.12.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.