CVE-2021-26677
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A local authenticated escalation of privilege vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in ClearPass OnGuard could allow local authenticated users on a Windows platform to elevate their privileges. A successful exploit could allow an attacker to execute arbitrary code with SYSTEM level privileges.
Se detectó una vulnerabilidad de escalada de privilegios autenticada local en Aruba ClearPass Policy Manager versiones: Anteriores a 6.9.5, 6.8.8-HF1, 6.7.14-HF1. Una vulnerabilidad en ClearPass OnGuard podría permitir a usuarios locales autenticados en una plataforma Windows elevar sus privilegios. Una explotación con éxito podría permitir a un atacante ejecutar código arbitrario con privilegios de nivel de System
CVSS Scores
SSVC
- Decision:-
Timeline
- 2021-02-03 CVE Reserved
- 2021-02-23 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2021-004.txt | 2022-05-03 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Arubanetworks Search vendor "Arubanetworks" | Clearpass Policy Manager Search vendor "Arubanetworks" for product "Clearpass Policy Manager" | < 6.7.14 Search vendor "Arubanetworks" for product "Clearpass Policy Manager" and version " < 6.7.14" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | - | - |
Safe
|
| Arubanetworks Search vendor "Arubanetworks" | Clearpass Policy Manager Search vendor "Arubanetworks" for product "Clearpass Policy Manager" | >= 6.8.0 < 6.8.7 Search vendor "Arubanetworks" for product "Clearpass Policy Manager" and version " >= 6.8.0 < 6.8.7" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | - | - |
Safe
|
| Arubanetworks Search vendor "Arubanetworks" | Clearpass Policy Manager Search vendor "Arubanetworks" for product "Clearpass Policy Manager" | >= 6.9.0 < 6.9.2 Search vendor "Arubanetworks" for product "Clearpass Policy Manager" and version " >= 6.9.0 < 6.9.2" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | - | - |
Safe
|