Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clearpass policy manager vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2018-7066
An unauthenticated remote command execution exists in Aruba ClearPass Policy Manager on linked devices. The ClearPass OnConnect feature permits administrators to link other network devices into ClearPass for the purpose of collecting enhanced information about connected endpoints...
Arubanetworks Clearpass Policy Manager
6.5
CVSSv2
CVE-2018-7067
A Remote Authentication bypass in Aruba ClearPass Policy Manager leads to complete cluster compromise. An authentication flaw in all versions of ClearPass could allow an malicious user to compromise the entire cluster through a specially crafted API call. Network access to the ad...
Arubanetworks Clearpass Policy Manager
6.5
CVSSv2
CVE-2018-7079
Aruba ClearPass Policy Manager guest authorization failure. Certain administrative operations in ClearPass Guest do not properly enforce authorization rules, which allows any authenticated administrative user to execute those operations regardless of privilege level. This could a...
Arubanetworks Clearpass Policy Manager
4.3
CVSSv2
CVE-2021-26678
A remote unauthenticated stored cross-site scripting (XSS) vulnerability exists in Aruba ClearPass Policy Manager version(s): before 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the web-based management interface of ClearPass could allow an unauthenticated remote malicious us...
Arubanetworks Clearpass Policy Manager
9
CVSSv2
CVE-2021-26681
A remote authenticated command Injection vulnerability exists in Aruba ClearPass Policy Manager version(s): before 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass CLI could allow remote authenticated users to run arbitrary commands on the underlying host. A success...
Arubanetworks Clearpass Policy Manager
9
CVSSv2
CVE-2021-26683
A remote authenticated command injection vulnerability exists in Aruba ClearPass Policy Manager version(s): before 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass web-based management interface allows remote authenticated users to run arbitrary commands on the unde...
Arubanetworks Clearpass Policy Manager
9
CVSSv2
CVE-2021-26684
A remote authenticated command injection vulnerability exists in Aruba ClearPass Policy Manager version(s): before 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass web-based management interface allows remote authenticated users to run arbitrary commands on the unde...
Arubanetworks Clearpass Policy Manager
5.5
CVSSv2
CVE-2021-26685
A remote authenticated SQL Injection vulnerabilitiy exists in Aruba ClearPass Policy Manager version(s): before 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the web-based management interface API of ClearPass could allow an authenticated remote malicious user to conduct SQL i...
Arubanetworks Clearpass Policy Manager
5.5
CVSSv2
CVE-2021-26686
A remote authenticated SQL Injection vulnerabilitiy exists in Aruba ClearPass Policy Manager version(s): before 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the web-based management interface API of ClearPass could allow an authenticated remote malicious user to conduct SQL i...
Arubanetworks Clearpass Policy Manager
3.5
CVSSv2
CVE-2015-4132
Multiple cross-site scripting (XSS) vulnerabilities in Aruba Networks ClearPass Policy Manager (CPPM) prior to 6.4.5 allow remote administrators to inject arbitrary web script or HTML via unspecified vectors.
Arubanetworks Clearpass Policy Manager
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »