CVE-2025-23058

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Feb 4, 2025

Summary

CVE-2025-23058 is a vulnerability affecting the ClearPass Policy Manager web-based management interface. This issue grants low-privileged, authenticated remote attackers unauthorized access to data and the ability to execute functions reserved for administrators with read/write privileges. The exploitation of this vulnerability allows a low-privileged user to escalate their privileges and perform administrative functions, potentially causing significant security risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Clearpass Policy Manager

Affected Vendors

Aruba Networks

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/2W5RF0
https://www.cve.org/CVERecord?id=CVE-2025-23058
https://nvd.nist.gov/vuln/detail/CVE-2025-23058

Back to Vulnerability Database