HPE Aruba Networking ClearPass Policy Manager Directory Traversal Vulnerability in Web Management Interface

Vulnerability

A directory traversal vulnerability has been identified in the web-based management interface of HPE Aruba Networking ClearPass Policy Manager. This vulnerability allows authenticated remote attackers with high privileges to access and retrieve sensitive information from exposed directories. Exploitation of this vulnerability could compromise the integrity and security of the entire system.

Impact

Successful exploitation allows access to sensitive data, potentially compromising the system's overall integrity and security.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

2.5

exploitability

4.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

2.5

exploitability

4.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

HPE Aruba Networking ClearPass Policy Manager Directory Traversal Vulnerability in Web Management Interface

Vulnerability

Impact

Affected Products

HPE Aruba Networking ClearPass Policy Manager

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating