Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clearpass vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2022-23672
A authenticated remote command injection vulnerability exists in Aruba ClearPass Policy Manager version(s): 6.10.4 and below, 6.9.9 and below, 6.8.9-HF2 and below, 6.7.x and below. Aruba has released updates to ClearPass Policy Manager that address this security vulnerability.
Arubanetworks Clearpass Policy Manager
Arubanetworks Clearpass Policy Manager 6.8.9
9
CVSSv2
CVE-2022-23673
A authenticated remote command injection vulnerability exists in Aruba ClearPass Policy Manager version(s): 6.10.4 and below, 6.9.9 and below, 6.8.9-HF2 and below, 6.7.x and below. Aruba has released updates to ClearPass Policy Manager that address this security vulnerability.
Arubanetworks Clearpass Policy Manager
Arubanetworks Clearpass Policy Manager 6.8.9
3.5
CVSSv2
CVE-2022-23674
A remote authenticated stored cross-site scripting (xss) vulnerability exists in Aruba ClearPass Policy Manager version(s): 6.10.4 and below, 6.9.9 and below, 6.8.9-HF2 and below, 6.7.x and below. Aruba has released updates to ClearPass Policy Manager that address this security v...
Arubanetworks Clearpass Policy Manager
Arubanetworks Clearpass Policy Manager 6.8.9
3.5
CVSSv2
CVE-2022-23675
A remote authenticated stored cross-site scripting (xss) vulnerability exists in Aruba ClearPass Policy Manager version(s): 6.10.4 and below, 6.9.9 and below, 6.8.9-HF2 and below, 6.7.x and below. Aruba has released updates to ClearPass Policy Manager that address this security v...
Arubanetworks Clearpass Policy Manager
Arubanetworks Clearpass Policy Manager 6.8.9
7.5
CVSSv2
CVE-2014-8367
SQL injection vulnerability in Aruba Networks ClearPass Policy Manager (CPPM) 6.2.x, 6.3.x prior to 6.3.6, and 6.4.x prior to 6.4.2 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Arubanetworks Clearpass Policy Manager
Arubanetworks Clearpass Policy Manager 6.2
4
CVSSv2
CVE-2021-29141
A remote disclosure of sensitive information vulnerability exists in Aruba ClearPass Policy Manager version(s) before 6.9.5, 6.8.9, 6.7.14-HF1. Aruba has released patches for Aruba ClearPass Policy Manager that address this security vulnerability.
Arubanetworks Clearpass
10
CVSSv2
CVE-2016-4401
Aruba ClearPass Policy Manager prior to 6.5.7 and 6.6.x prior to 6.6.2 allows malicious users to obtain database credentials.
Arubanetworks Clearpass
2 Github repositories
6.8
CVSSv2
CVE-2015-3655
Cross-site request forgery (CSRF) vulnerability in Aruba Networks ClearPass Policy Manager prior to 6.4.7 and 6.5.x prior to 6.5.2 allows remote malicious users to hijack the authentication of administrators by leveraging improper enforcement of the anti-CSRF token.
Arubanetworks Clearpass
3.5
CVSSv2
CVE-2020-7110
ClearPass is vulnerable to Stored Cross Site Scripting by allowing a malicious administrator, or a compromised administrator account, to save malicious scripts within ClearPass that could be executed resulting in a privilege escalation attack. Resolution: Fixed in 6.7.13, 6.8.4, ...
Arubanetworks Clearpass
6.5
CVSSv2
CVE-2020-7111
A server side injection vulnerability exists which could allow an authenticated administrative user to achieve Remote Code Execution in ClearPass. Resolution: Fixed in 6.7.13, 6.8.4, 6.9.0 and higher.
Arubanetworks Clearpass
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »