CVE-2024-26299 | HPE Aruba ClearPass Policy Manager up to 6.9.13/6.10.8/6.11.6/6.12.0 Web-based Management Interface cross site scripting (ARUBA-PSA-2024-001)

Posted by Angelo Barbosa | Feb 28, 2024 | CVE

A vulnerability, which was classified as problematic, was found in HPE Aruba ClearPass Policy Manager up to 6.9.13/6.10.8/6.11.6/6.12.0. Affected is an unknown function of the component Web-based Management Interface. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-26299. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-26299 | HPE Aruba ClearPass Policy Manager up to 6.9.13/6.10.8/6.11.6/6.12.0 Web-based Management Interface cross site scripting (ARUBA-PSA-2024-001)

Related Posts

CVE-2024-7424 | Multiple Page Generator Plugin up to 4.0.1 on WordPress authorization

CVE-2024-42786 | Kashipara Music Management System 1.0 View User Profile Page /music/view_user.php id sql injection

CVE-2024-5596 | ARMember Premium Plugin up to 6.7 on WordPress cross-site request forgery

CVE-2023-50856 | FunnelKit Funnel Builder Plugin up to 2.14.3 on WordPress sql injection