Unrated severityNVD Advisory· Published Dec 3, 2024· Updated Dec 3, 2024
Authenticated Remote Code Execution (RCE) via OGNL Injection in HPE Aruba Networking ClearPass Web-Based Management Interface
CVE-2024-51771
Description
A vulnerability in the HPE Aruba Networking ClearPass Policy Manager web-based management interface could allow an authenticated remote threat actor to conduct a remote code execution attack. Successful exploitation could enable the attacker to run arbitrary commands on the underlying operating system.
Affected products
2- Hewlett Packard Enterprise (HPE)/HPE Aruba Networking ClearPass Policy Managerv5Range: 6.12.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.