Sensitive Data Exposure in HPE Aruba Networking ClearPass Policy Manager
CVE-2025-23059
4.9MEDIUM
What is CVE-2025-23059?
A vulnerability exists in the web-based management interface of HPE Aruba Networking ClearPass Policy Manager, allowing authenticated remote attackers with high privileges to access directories containing sensitive information. Successful exploitation of this vulnerability could lead to the unauthorized retrieval of sensitive data, potentially compromising the system's integrity and security.
Affected Version(s)
HPE Aruba Networking ClearPass Policy Manager 6.12.0
HPE Aruba Networking ClearPass Policy Manager 6.12.0
HPE Aruba Networking ClearPass Policy Manager 6.11.0