CVE-2017-9001

Name of the Vulnerable Software and Affected Versions Aruba ClearPass versions 6.6.3 and later

Description The issue is related to the "SSH Lockout" feature, which when enabled, introduces an unauthenticated remote command execution issue. This could allow an unauthenticated user to execute arbitrary commands on the underlying operating system with "root" privilege level. The feature is not enabled by default, so only systems with this feature enabled are affected.

Recommendations For Aruba ClearPass versions 6.6.3 and later with the SSH Lockout feature enabled, consider disabling the SSH Lockout feature until a patch is available. Restrict access to the system to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.