Local Privilege Escalation Vulnerability in HPE Aruba Networking Clear Pass...

7.8 / 10

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

A local privilege-escalation vulnerability has been discovered in the HPE Aruba Networking ClearPass OnGuard Software for Linux. Successful exploitation of this vulnerability could allow a local attacker to achieve arbitrary code execution with root privileges.

Basic Information

ID CVE-2026-23599

Source hpe

Published Feb 17, 2026 at 23:04

Affected Product

Vendor Hewlett Packard Enterprise (HPE)

Product HPE Aruba Networking ClearPass Policy Manager

Version 6.12.0

Affected Versions Hewlett Packard Enterprise (HPE) HPE Aruba Networking ClearPass Policy Manager 6.12.0
Hewlett Packard Enterprise (HPE) HPE Aruba Networking ClearPass Policy Manager 6.11.0

References

support.hpe.com /hpesc/public/docDisplay

{
    "lastseen": "",
    "description": "A local privilege-escalation vulnerability has been discovered in the HPE Aruba Networking ClearPass OnGuard Software for Linux. Successful exploitation of this vulnerability could allow a local attacker to achieve arbitrary code execution with root privileges.",
    "published": "2026-02-17T23:04:36.463Z",
    "modified": "2026-02-17T23:04:36.463Z",
    "type": "cve",
    "title": "Local Privilege Escalation Vulnerability in HPE Aruba Networking Clear Pass Policy Manager OnGuard for Linux",
    "source": "hpe",
    "references": "https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw05012en_us&docLocale=en_US",
    "id": "CVE-2026-23599",
    "bulletinFamily": "",
    "cwe": null,
    "cvelist": null,
    "sourceData": "Hewlett Packard Enterprise (HPE) HPE Aruba Networking ClearPass Policy Manager 6.12.0\nHewlett Packard Enterprise (HPE) HPE Aruba Networking ClearPass Policy Manager 6.11.0",
    "sourceHref": "",
    "cvss": {
        "score": 7.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "HPE Aruba Networking ClearPass Policy Manager",
    "version": "6.12.0",
    "vendor": "Hewlett Packard Enterprise (HPE)",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Local Privilege Escalation Vulnerability in HPE Aruba Networking Clear Pass Policy Manager OnGuard for Linux_CVE-2026-23599

Description

Basic Information

Affected Product

References

💭 Join the Security Discussion ❌ Cancel Reply