CVE-2024-51771
CVSS 3.1 Score 7.2 of 10 (high)
Details
Summary
CVE-2024-51771 is a newly discovered vulnerability affecting HPE Aruba Networking ClearPass Policy Manager. This issue permits authenticated remote attackers to execute arbitrary code on the underlying operating system through the web-based management interface. Successfully exploiting this vulnerability could grant an adversary extensive system control and potential data theft or unauthorized access. Organizations using this product are urged to apply the forthcoming patch to mitigate this risk. This vulnerability, identified as CVE-2024-51771, poses a significant threat to HPE Aruba Networking ClearPass Policy Manager users. Authenticated attackers can capitalize on this flaw in the web-based management interface to execute arbitrary code on the underlying operating system. The potential consequences of a successful attack include system takeover, data breaches, and further unauthorized access. Companies utilizing this product are advised to implement the forthcoming patch as soon as possible to eliminate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- Aruba Networks