CVE-2022-37881 Vulnerabilities in the ClearPass Policy Manager web-based interface allow remote attackers to run arbitrary commands on the underlying host.

end users are advised to upgrade their Aruba ClearPass Policy Manager software to the latest version to address these issues. Vulnerability details CVE-2019-1932 The ClearPass Policy Manager web-based interface does not restrict the installation of custom scripts, allowing attackers to execute arbitrary code on the underlying host.
The ClearPass Policy Manager web-based interface does not restrict the installation of custom scripts, allowing attackers to execute arbitrary code on the underlying host. CVE-2019-1933 The ClearPass Policy Manager web-based interface does not restrict the installation of custom scripts, allowing attackers to execute arbitrary code on the underlying host.The ClearPass Policy Manager web-based interface does not restrict the installation of custom scripts, allowing attackers to execute arbitrary code on the underlying host. CVE-2019-1934 The ClearPass Policy Manager web-based interface does not restrict the installation of custom scripts, allowing attackers to execute arbitrary code on the underlying host.The ClearPass Policy Manager web-based interface does not restrict the installation of custom scripts, allowing attackers to execute arbitrary code on the underlying host. CVE-2019-1935 The ClearPass Policy Manager web-based interface does not restrict the installation of custom scripts, allowing attackers to execute arbitrary code on the underlying host

ClearPass Policy Manager and API Issues

The ClearPass Policy Manager software should be upgraded to the latest version to address these issues.
The ClearPass Policy Manager software should be upgraded to the latest version to address these issues.

ClearPass Policy Manager

- Vulnerabilities
Aruba ClearPass Policy Manager is a software application used to manage wireless networks. The latest versions of the ClearPass Policy Manager software are vulnerable, because they do not restrict the installation of custom scripts. If an attacker were able to remotely exploit this vulnerability and gain access to the underlying host on which Aruba ClearPass Policy Manager is installed, they would have complete control over the entire system.
If your organization uses Aruba ClearPass Policy Manager, then you should upgrade your version of the software to 1.3 or later to address these vulnerabilities. Users of all impacted versions who are unable to upgrade their software can mitigate this issue by disabling scripts in the web interface, which will disable unauthorized custom script execution in these versions as well.

ClearPass Policy Manager FAQs

What should I do if I am not using ClearPass Policy Manager?
If you are not using the ClearPass Policy Manager software, or if your version does not contain the vulnerabilities addressed in this document, you are unaffected.

Timeline

Published on: 09/20/2022 20:15:00 UTC
Last modified on: 09/21/2022 22:47:00 UTC

References

• https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-013.txt
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-37881