Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
578
VMScore
CVE-2020-7111
A server side injection vulnerability exists which could allow an authenticated administrative user to achieve Remote Code Execution in ClearPass. Resolution: Fixed in 6.7.13, 6.8.4, 6.9.0 and higher.
Arubanetworks Clearpass
356
VMScore
CVE-2020-7113
A vulnerability was found when an attacker, while communicating with the ClearPass management interface, is able to intercept and change parameters in the HTTP packets resulting in the compromise of some of ClearPass' service accounts. Resolution: Fixed in 6.7.10, 6.8.1, 6.9...
Arubanetworks Clearpass
668
VMScore
CVE-2020-7114
A vulnerability exists allowing attackers, when present in the same network segment as ClearPass' management interface, to make changes to certain databases in ClearPass by crafting HTTP packets. As a result of this attack, a possible complete cluster compromise might occur....
Arubanetworks Clearpass
890
VMScore
CVE-2020-7115
The ClearPass Policy Manager web interface is affected by a vulnerability that leads to authentication bypass. Upon successful bypass an attacker could then execute an exploit that would allow to remote command execution in the underlying operating system. Resolution: Fixed in 6....
Arubanetworks Clearpass Policy Manager
1 Github repository
801
VMScore
CVE-2020-7116
The ClearPass Policy Manager WebUI administrative interface has an authenticated command remote execution. When the attacker is already authenticated to the administrative interface, they could then exploit the system, leading to remote command execution in the underlying operati...
Arubanetworks Clearpass Policy Manager
801
VMScore
CVE-2020-7117
The ClearPass Policy Manager WebUI administrative interface has an authenticated command remote execution. When the attacker is already authenticated to the administrative interface, they could then exploit the system, leading to remote command execution in the underlying operati...
Arubanetworks Clearpass Policy Manager
NA
CVE-2020-7118
Rejected reason: CVE was unused by HPE.
356
VMScore
CVE-2020-7119
A vulnerability exists in the Aruba Analytics and Location Engine (ALE) web management interface 2.1.0.2 and previous versions firmware that allows an already authenticated administrative user to arbitrarily modify files as an underlying privileged operating system user.
Arubanetworks Analytics And Location Engine 2.0.0.0
Arubanetworks Analytics And Location Engine
445
VMScore
CVE-2020-7122
Two memory corruption vulnerabilities in the Aruba CX Switches Series 6200F, 6300, 6400, 8320, 8325, and 8400 have been found. Successful exploitation of these vulnerabilities could result in Local Denial of Service of the CDP (Cisco Discovery Protocol) process in the switch. Thi...
Arubanetworks Cx 6200f Firmware
Arubanetworks Cx 6300 Firmware
Arubanetworks Cx 6400 Firmware
Arubanetworks Cx 8320 Firmware
Arubanetworks Cx 8325 Firmware
Arubanetworks Cx 8400 Firmware
641
VMScore
CVE-2020-7123
A local escalation of privilege vulnerability exists in Aruba ClearPass Policy Manager version(s) before 6.9.5, 6.8.9, 6.7.14-HF1. Aruba has released patches for Aruba ClearPass Policy Manager that address this security vulnerability.
Arubanetworks Clearpass Policy Manager
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36954
CVE-2024-36933
CVE-2024-24919
CVE-2024-36923
CVE-2024-2961
CVE-2024-36925
bypass
encryption
command injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »