CNNVD-202509-2710 Information
CNNVD ID
CNNVD-202509-2710
Related CVE
- CNNVD Published: 2025-09-17
Description (Chinese)
HPE Aruba Networking ClearPass Policy Manager是美国HPE公司的一款网络访问控制与策略管理平台。 HPE Aruba Networking ClearPass Policy Manager存在安全漏洞,该漏洞源于未经验证的远程攻击者可进行反射型跨站脚本攻击,可能导致在受影响环境中执行任意JavaScript代码。
Description (English)
HPE Aruba Networking ClearPass Policy Manager is a web access control and strategy management platform for HPE companies in the United States. HPE Aruba Networking ClearPass Policy Manager has a security loophole, which stems from the fact that unverified long-range assailants can engage in a reflective cross-site script attack and may lead to the implementation of arbitrary JavaScript codes in affected environments.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
HPE
Published
2025-09-17
Last Modified
2026-02-24
References
https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04950en_us&docLocale=en_US https://vigilance.fr/vulnerability/HPE-Aruba-Networking-ClearPass-Policy-Manager-Cross-Site-Scripting-dated-18-09-2025-48255
Patch
https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04950en_us&docLocale=en_US
Share on: