Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arubanetworks clearpass vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2014-6620
Cross-site scripting (XSS) vulnerability in Aruba Networks ClearPass prior to 6.3.6 and 6.4.x prior to 6.4.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Arubanetworks Clearpass
Arubanetworks Clearpass 6.4.0
5
CVSSv2
CVE-2014-6621
Aruba Networks ClearPass prior to 6.3.6 and 6.4.x prior to 6.4.1 does not disable the troubleshooting and diagnostics page in production systems, which allows remote malicious users to obtain version numbers, module configuration, and other sensitive information by reading the pa...
Arubanetworks Clearpass
Arubanetworks Clearpass 6.4.0
5
CVSSv2
CVE-2014-6622
Aruba Networks ClearPass prior to 6.3.6 and 6.4.x prior to 6.4.1 allows remote malicious users to determine the validity of filenames via unspecified vectors.
Arubanetworks Clearpass
Arubanetworks Clearpass 6.4.0
4.3
CVSSv2
CVE-2014-6623
Cross-site request forgery (CSRF) vulnerability in the Insight module in Aruba Networks ClearPass prior to 6.3.6 and 6.4.x prior to 6.4.1 allows remote malicious users to hijack the authentication of a logged in user via unspecified vectors.
Arubanetworks Clearpass
Arubanetworks Clearpass 6.4.0
6.8
CVSSv2
CVE-2014-6624
The Insight module in Aruba Networks ClearPass prior to 6.3.6 and 6.4.x prior to 6.4.1 allows remote authenticated users to read arbitrary files via unspecified vectors.
Arubanetworks Clearpass 6.4.0
Arubanetworks Clearpass
10
CVSSv2
CVE-2014-6626
Aruba Networks ClearPass prior to 6.3.6 and 6.4.x prior to 6.4.1 does not properly restrict access to unspecified administrative functions, which allows remote malicious users to bypass authentication and execute administrative actions via unknown vectors.
Arubanetworks Clearpass
Arubanetworks Clearpass 6.4.0
9
CVSSv2
CVE-2014-6625
The Policy Manager in Aruba Networks ClearPass prior to 6.3.6 and 6.4.x prior to 6.4.1 allows remote authenticated users to gain privileges via unspecified vectors.
Arubanetworks Clearpass 6.4.0
Arubanetworks Clearpass
9
CVSSv2
CVE-2014-6627
Aruba Networks ClearPass prior to 6.3.5 and 6.4.x prior to 6.4.1 allows remote malicious users to execute arbitrary commands via unspecified vectors, a different vulnerability than CVE-2014-5342.
Arubanetworks Clearpass
Arubanetworks Clearpass 6.4.0
NA
CVE-2023-43507
A vulnerability in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote malicious user to conduct SQL injection attacks against the ClearPass Policy Manager instance. An attacker could exploit this vulnerability to obtain and modify s...
Arubanetworks Clearpass Policy Manager
Arubanetworks Clearpass Policy Manager 6.9.13
Arubanetworks Clearpass Policy Manager 6.10.8
NA
CVE-2023-43508
Vulnerabilities in the web-based management interface of ClearPass Policy Manager allow an attacker with read-only privileges to perform actions that change the state of the ClearPass Policy Manager instance. Successful exploitation of these vulnerabilities allow an malicious use...
Arubanetworks Clearpass Policy Manager
Arubanetworks Clearpass Policy Manager 6.9.13
Arubanetworks Clearpass Policy Manager 6.10.8
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »