Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arubanetworks clearpass policy manager vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv2
CVE-2021-26685
A remote authenticated SQL Injection vulnerabilitiy exists in Aruba ClearPass Policy Manager version(s): before 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the web-based management interface API of ClearPass could allow an authenticated remote malicious user to conduct SQL i...
Arubanetworks Clearpass Policy Manager
6.5
CVSSv2
CVE-2018-7079
Aruba ClearPass Policy Manager guest authorization failure. Certain administrative operations in ClearPass Guest do not properly enforce authorization rules, which allows any authenticated administrative user to execute those operations regardless of privilege level. This could a...
Arubanetworks Clearpass Policy Manager
6.5
CVSSv2
CVE-2021-40999
A remote arbitrary command execution vulnerability exists in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x before 6.10.2 - - ClearPass Policy Manager 6.9.x before 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x before 6.8.9-HF1. Aruba has released patche...
Arubanetworks Clearpass Policy Manager
NA
CVE-2022-43530
Vulnerabilities in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote malicious user to conduct SQL injection attacks against the ClearPass Policy Manager instance. An attacker could exploit these vulnerabilities to obtain and modif...
Arubanetworks Clearpass Policy Manager
NA
CVE-2022-43535
A vulnerability in the ClearPass OnGuard Windows agent could allow malicious users on a Windows instance to elevate their user privileges. A successful exploit could allow these users to execute arbitrary code with NT AUTHORITY\SYSTEM level privileges on the Windows instance in A...
Arubanetworks Clearpass Policy Manager
6.5
CVSSv2
CVE-2021-37737
A remote SQL injection vulnerability exists in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x before 6.10.2 - - ClearPass Policy Manager 6.9.x before 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x before 6.8.9-HF1. Aruba has released patches for ClearPas...
Arubanetworks Clearpass Policy Manager
NA
CVE-2022-23685
A vulnerability in the ClearPass Policy Manager web-based management interface exists which exposes some endpoints to a lack of Cross-Site Request Forgery (CSRF) protection. This could allow a remote unauthenticated malicious user to execute arbitrary input against these endpoint...
Arubanetworks Clearpass Policy Manager
NA
CVE-2022-23692
Vulnerabilities in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote malicious user to conduct SQL injection attacks against the ClearPass Policy Manager instance. An attacker could exploit these vulnerabilities to obtain and modif...
Arubanetworks Clearpass Policy Manager
NA
CVE-2022-37877
A vulnerability in the ClearPass OnGuard macOS agent could allow malicious users on a macOS instance to elevate their user privileges. A successful exploit could allow these users to execute arbitrary code with root level privileges on the macOS instance in Aruba ClearPass Policy...
Arubanetworks Clearpass Policy Manager
NA
CVE-2022-37878
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an malicious user to execute arbitrary commands as root on the underlying operating s...
Arubanetworks Clearpass Policy Manager
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »