VDB
CVE-2022-23673
CVE-2022-23673
PUBLISHED
CVSS 9 CRITICAL
A authenticated remote command injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): 6.10.4 and below, 6.9.9 and below, 6.8.9-HF2 and below, 6.7.x and below. Aruba has released updates to ClearPass Policy Manager that address this security vulnerability.
EPSS 3.87% · 88.5th percentile
Risk Scores
CVSS 2.0
9
EPSS Score
3.87%
88.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| arubanetworks | clearpass_policy_manager | 6.8.0, 6.9.0, 6.10.0 |
| n/a | Aruba ClearPass Policy Manager | 6.10.4 and below, 6.9.9 and below, 6.8.9-HF2 and below, 6.7.x and below |
Exploit Intelligence
Timeline
- May 5, 2022 CVE Published
- May 18, 2022 EPSS Score
- Jul 6, 2022 EPSS Score
- Aug 25, 2022 EPSS Score
- Dec 1, 2022 EPSS Score
- Jan 19, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 9, 2023 EPSS Score
- Apr 27, 2023 EPSS Score
- Aug 3, 2023 EPSS Score
- Sep 21, 2023 EPSS Score
- Nov 9, 2023 EPSS Score