Security Advisory

CVE-2024-26300

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-27 22:06:49
Last updated 2024-11-07 11:07:53
Assigner hpe
State PUBLISHED

Description

A vulnerability in the guest interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against an administrative user of the interface. A successful exploit allows an attacker to execute arbitrary script code in a victims browser in the context of the affected interface.