CVE-2024-26297
CVSS 3.1 Score 7.2 of 10 (high)
Details
Published Feb 27, 2024
Updated: Aug 1, 2024
CWE ID 77
Summary
CVE-2024-26297 refers to a vulnerability in the ClearPass Policy Manager web-based interface. This issue enables remote, authenticated users to execute arbitrary commands on the underlying host. Successful exploitation could result in complete system compromise, as an attacker would gain root privileges. The vulnerability poses a serious risk to the security of affected systems.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share