CVE-2023-25595
Published Mar 22, 2023
Last updated a year ago
Overview
- Description
- A vulnerability exists in the ClearPass OnGuard Ubuntu agent that allows for an attacker with local Ubuntu instance access to potentially obtain sensitive information. Successful Exploitation of this vulnerability allows an attacker to retrieve information that is of a sensitive nature to the ClearPass/OnGuard environment.
- Source
- security-alert@hpe.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 5.5
- Impact score
- 3.6
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
- Severity
- MEDIUM
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:arubanetworks:clearpass_policy_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DAF80068-5F4B-46ED-AD0D-CB27FAC68C4C",
"versionEndIncluding": "6.9.13",
"versionStartIncluding": "6.9.0"
},
{
"criteria": "cpe:2.3:a:arubanetworks:clearpass_policy_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "032EBB33-A9BD-4C79-90DE-812706B26691",
"versionEndIncluding": "6.10.8",
"versionStartIncluding": "6.10.0"
},
{
"criteria": "cpe:2.3:a:arubanetworks:clearpass_policy_manager:6.11.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3811F6B0-A00C-413B-B1F1-0347249A50BB"
},
{
"criteria": "cpe:2.3:a:arubanetworks:clearpass_policy_manager:6.11.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7ADA5D58-3928-46B7-BB45-A989577CC726"
}
],
"operator": "OR"
}
]
}
]