Aruba Networks · Clearpass Policy Manager · CVE-2025-23058
**Name of the Vulnerable Software and Affected Versions**
ClearPass Policy Manager (affected versions not specified)
**Description**
A vulnerability in the ClearPass Policy Manager web-based management interface allows a low-privileged (read-only) authenticated remote attacker to gain unauthorized access to data and the ability to execute functions that should be restricted to administrators only with read/write privileges. Successful exploitation could enable a low-privileged user to execute administrative functions leading to an escalation of privileges.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.