CVE-2023-25590

Name of the Vulnerable Software and Affected Versions ClearPass OnGuard Linux agent (affected versions not specified)

Description The issue is related to insecure privilege management in the ClearPass OnGuard component of the Aruba Networks ClearPass Policy Manager for Linux. It allows malicious users on a Linux instance to elevate their user privileges to a higher role. A successful exploit enables malicious users to execute arbitrary code with root-level privileges on the Linux instance.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.