A vulnerability in the web-based management interface of ClearPass Policy Manager could allow an unauthenticated remote attacker to send notifications to computers that are running ClearPass OnGuard. These notifications can then be used to phish users or trick them into downloading malicious software.

Related CVEs

CVE-2023-43509

Key Information

GHSA ID

GHSA-55jf-4cm3-v6wp

Published

October 25, 2023 6:32 PM

Last Modified

September 11, 2024 9:30 PM

CVSS Score

5.0 /10

Primary Ecosystem

Unknown

Primary Package

Unknown

GitHub Reviewed

✗ No

Dataset

Last updated: September 6, 2025 6:30 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.