CVE-2021-26678 – A remote unauthenticated stored cross-site scripting (XSS) vulnerability was discovered in …

23 February 2021

Vuln ID: CVE-2021-26678

Published: 2021-02-23 18:15:13Z

Description: A remote unauthenticated stored cross-site scripting (XSS) vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the web-based management interface of ClearPass could allow an unauthenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against an administrative user of the interface. A successful exploit could allow an attacker to execute arbitrary script code in a victimâ€™s browser in the context of the affected interface.

Source: NVD.NIST.GOV

Date:

23 February 2021

Categorie(s):

NVD

Tag(s):

NVD

Microsoft cannot keep its own security in order, so what hope for its add-ons customers?24 April 2024
Proposed FTC commercial surveillance rules expected soon24 April 2024
Improved ransomware attack response aimed by Veeam’s Coveware purchase24 April 2024
Elusive group ToddyCat refines techniques for large-scale data theft24 April 2024
Coalition reveals uptick in cyber insurance claims driven by ransomware in 202324 April 2024