S4Thi5H

**Name of the Vulnerable Software and Affected Versions** ClearPass Policy Manager (affected versions not specified) **Description** A vulnerability in the web-based management interface could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against an administrative user of the interface. A successful exploit allows an attacker to execute arbitrary script code in a victim's browser in the context of the affected interface. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.