Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clearpass vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2016-4401
Aruba ClearPass Policy Manager prior to 6.5.7 and 6.6.x prior to 6.6.2 allows malicious users to obtain database credentials.
Arubanetworks Clearpass
2 Github repositories
3.5
CVSSv2
CVE-2020-7110
ClearPass is vulnerable to Stored Cross Site Scripting by allowing a malicious administrator, or a compromised administrator account, to save malicious scripts within ClearPass that could be executed resulting in a privilege escalation attack. Resolution: Fixed in 6.7.13, 6.8.4, ...
Arubanetworks Clearpass
6.5
CVSSv2
CVE-2020-7111
A server side injection vulnerability exists which could allow an authenticated administrative user to achieve Remote Code Execution in ClearPass. Resolution: Fixed in 6.7.13, 6.8.4, 6.9.0 and higher.
Arubanetworks Clearpass
4
CVSSv2
CVE-2020-7113
A vulnerability was found when an attacker, while communicating with the ClearPass management interface, is able to intercept and change parameters in the HTTP packets resulting in the compromise of some of ClearPass' service accounts. Resolution: Fixed in 6.7.10, 6.8.1, 6.9...
Arubanetworks Clearpass
4
CVSSv2
CVE-2021-29138
A remote disclosure of privileged information vulnerability exists in Aruba ClearPass Policy Manager version(s) before 6.9.5, 6.8.9, 6.7.14-HF1. Aruba has released patches for Aruba ClearPass Policy Manager that address this security vulnerability.
Arubanetworks Clearpass
6.8
CVSSv2
CVE-2015-3655
Cross-site request forgery (CSRF) vulnerability in Aruba Networks ClearPass Policy Manager prior to 6.4.7 and 6.5.x prior to 6.5.2 allows remote malicious users to hijack the authentication of administrators by leveraging improper enforcement of the anti-CSRF token.
Arubanetworks Clearpass
9
CVSSv2
CVE-2021-26681
A remote authenticated command Injection vulnerability exists in Aruba ClearPass Policy Manager version(s): before 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass CLI could allow remote authenticated users to run arbitrary commands on the underlying host. A success...
Arubanetworks Clearpass Policy Manager
9
CVSSv2
CVE-2021-26683
A remote authenticated command injection vulnerability exists in Aruba ClearPass Policy Manager version(s): before 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass web-based management interface allows remote authenticated users to run arbitrary commands on the unde...
Arubanetworks Clearpass Policy Manager
6.5
CVSSv2
CVE-2021-40999
A remote arbitrary command execution vulnerability exists in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x before 6.10.2 - - ClearPass Policy Manager 6.9.x before 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x before 6.8.9-HF1. Aruba has released patche...
Arubanetworks Clearpass Policy Manager
9
CVSSv2
CVE-2014-6628
Aruba Networks ClearPass Policy Manager (CPPM) prior to 6.5.0 allows remote administrators to execute arbitrary code via unspecified vectors.
Arubanetworks Clearpass Policy Manager
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »