Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arubanetworks clearpass policy manager vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-6628
Aruba Networks ClearPass Policy Manager (CPPM) prior to 6.5.0 allows remote administrators to execute arbitrary code via unspecified vectors.
Arubanetworks Clearpass Policy Manager
7.2
CVSSv3
CVE-2022-37879
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an malicious user to execute arbitrary commands as root on the underlying operating s...
Arubanetworks Clearpass Policy Manager
8.8
CVSSv3
CVE-2022-23695
Vulnerabilities in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote malicious user to conduct SQL injection attacks against the ClearPass Policy Manager instance. An attacker could exploit these vulnerabilities to obtain and modif...
Arubanetworks Clearpass Policy Manager
8.8
CVSSv3
CVE-2022-23696
Vulnerabilities in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote malicious user to conduct SQL injection attacks against the ClearPass Policy Manager instance. An attacker could exploit these vulnerabilities to obtain and modif...
Arubanetworks Clearpass Policy Manager
NA
CVE-2015-1551
Directory traversal vulnerability in Aruba Networks ClearPass Policy Manager (CPPM) prior to 6.4.4 allows remote administrators to read arbitrary files via unspecified vectors.
Arubanetworks Clearpass Policy Manager
9
CVSSv3
CVE-2018-7066
An unauthenticated remote command execution exists in Aruba ClearPass Policy Manager on linked devices. The ClearPass OnConnect feature permits administrators to link other network devices into ClearPass for the purpose of collecting enhanced information about connected endpoints...
Arubanetworks Clearpass Policy Manager
7.2
CVSSv3
CVE-2018-7067
A Remote Authentication bypass in Aruba ClearPass Policy Manager leads to complete cluster compromise. An authentication flaw in all versions of ClearPass could allow an malicious user to compromise the entire cluster through a specially crafted API call. Network access to the ad...
Arubanetworks Clearpass Policy Manager
7.2
CVSSv3
CVE-2018-7079
Aruba ClearPass Policy Manager guest authorization failure. Certain administrative operations in ClearPass Guest do not properly enforce authorization rules, which allows any authenticated administrative user to execute those operations regardless of privilege level. This could a...
Arubanetworks Clearpass Policy Manager
7.2
CVSSv3
CVE-2020-7116
The ClearPass Policy Manager WebUI administrative interface has an authenticated command remote execution. When the attacker is already authenticated to the administrative interface, they could then exploit the system, leading to remote command execution in the underlying operati...
Arubanetworks Clearpass Policy Manager
8.8
CVSSv3
CVE-2021-34609
A remote SQL injection vulnerability exists in Aruba ClearPass Policy Manager version(s): before 6.10.0, 6.9.6 and 6.8.9. Aruba has released updates to ClearPass Policy Manager that address this security vulnerability.
Arubanetworks Clearpass Policy Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »