Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arubanetworks clearpass policy manager vulnerabilities and exploits
(subscribe to this query)
801
VMScore
CVE-2020-7117
The ClearPass Policy Manager WebUI administrative interface has an authenticated command remote execution. When the attacker is already authenticated to the administrative interface, they could then exploit the system, leading to remote command execution in the underlying operati...
Arubanetworks Clearpass Policy Manager
409
VMScore
CVE-2020-7120
A local authenticated buffer overflow vulnerability exists in Aruba ClearPass Policy Manager version(s): before 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in ClearPass OnGuard could allow local authenticated users to cause a buffer overflow condition. A successful exploit coul...
Arubanetworks Clearpass Policy Manager
NA
CVE-2022-37879
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an malicious user to execute arbitrary commands as root on the underlying operating s...
Arubanetworks Clearpass Policy Manager
383
VMScore
CVE-2021-26678
A remote unauthenticated stored cross-site scripting (XSS) vulnerability exists in Aruba ClearPass Policy Manager version(s): before 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the web-based management interface of ClearPass could allow an unauthenticated remote malicious us...
Arubanetworks Clearpass Policy Manager
801
VMScore
CVE-2021-26684
A remote authenticated command injection vulnerability exists in Aruba ClearPass Policy Manager version(s): before 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass web-based management interface allows remote authenticated users to run arbitrary commands on the unde...
Arubanetworks Clearpass Policy Manager
490
VMScore
CVE-2021-26685
A remote authenticated SQL Injection vulnerabilitiy exists in Aruba ClearPass Policy Manager version(s): before 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the web-based management interface API of ClearPass could allow an authenticated remote malicious user to conduct SQL i...
Arubanetworks Clearpass Policy Manager
490
VMScore
CVE-2021-26686
A remote authenticated SQL Injection vulnerabilitiy exists in Aruba ClearPass Policy Manager version(s): before 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the web-based management interface API of ClearPass could allow an authenticated remote malicious user to conduct SQL i...
Arubanetworks Clearpass Policy Manager
605
VMScore
CVE-2018-7063
In Aruba ClearPass, disabled API admins can still perform read/write operations. In certain circumstances, API admins in ClearPass which have been disabled may still be able to perform read/write operations on parts of the XML API. This can lead to unauthorized access to the API ...
Arubanetworks Clearpass Policy Manager
578
VMScore
CVE-2018-7079
Aruba ClearPass Policy Manager guest authorization failure. Certain administrative operations in ClearPass Guest do not properly enforce authorization rules, which allows any authenticated administrative user to execute those operations regardless of privilege level. This could a...
Arubanetworks Clearpass Policy Manager
801
VMScore
CVE-2014-6628
Aruba Networks ClearPass Policy Manager (CPPM) prior to 6.5.0 allows remote administrators to execute arbitrary code via unspecified vectors.
Arubanetworks Clearpass Policy Manager
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-38627
CVE-2022-45803
CVE-2024-38319
camera
template injection
CVE-2024-27801
CVE-2024-0762
CVE-2024-5791
unauthorized
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »