Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clearpass vulnerabilities and exploits
(subscribe to this query)
10
CVSSv3
CVE-2022-23657
A remote authentication bypass vulnerability exists in Aruba ClearPass Policy Manager version(s): 6.10.4 and below, 6.9.9 and below, 6.8.9-HF2 and below, 6.7.x and below. Aruba has released updates to ClearPass Policy Manager that address this security vulnerability.
Arubanetworks Clearpass Policy Manager 6.8.9
Arubanetworks Clearpass Policy Manager
10
CVSSv3
CVE-2022-23658
A remote authentication bypass vulnerability exists in Aruba ClearPass Policy Manager version(s): 6.10.4 and below, 6.9.9 and below, 6.8.9-HF2 and below, 6.7.x and below. Aruba has released updates to ClearPass Policy Manager that address this security vulnerability.
Arubanetworks Clearpass Policy Manager 6.8.9
Arubanetworks Clearpass Policy Manager
10
CVSSv3
CVE-2022-23660
A remote authentication bypass vulnerability exists in Aruba ClearPass Policy Manager version(s): 6.10.4 and below, 6.9.9 and below, 6.8.9-HF2 and below, 6.7.x and below. Aruba has released updates to ClearPass Policy Manager that address this security vulnerability.
Arubanetworks Clearpass Policy Manager 6.8.9
Arubanetworks Clearpass Policy Manager
9.8
CVSSv3
CVE-2023-25589
A vulnerability in the web-based management interface of ClearPass Policy Manager could allow an unauthenticated remote malicious user to create arbitrary users on the platform. A successful exploit allows an malicious user to achieve total cluster compromise.
Arubanetworks Clearpass Policy Manager
Arubanetworks Clearpass Policy Manager 6.11.0
Arubanetworks Clearpass Policy Manager 6.11.1
9.8
CVSSv3
CVE-2021-40996
A remote authentication bypass vulnerability exists in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x before 6.10.2 - - ClearPass Policy Manager 6.9.x before 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x before 6.8.9-HF1. Aruba has released patches for ...
Arubanetworks Clearpass Policy Manager
Arubanetworks Clearpass Policy Manager 6.8.9
Arubanetworks Clearpass Policy Manager 6.9.7
9.8
CVSSv3
CVE-2021-40997
A remote authentication bypass vulnerability exists in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x before 6.10.2 - - ClearPass Policy Manager 6.9.x before 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x before 6.8.9-HF1. Aruba has released patches for ...
Arubanetworks Clearpass Policy Manager
Arubanetworks Clearpass Policy Manager 6.8.9
Arubanetworks Clearpass Policy Manager 6.9.7
9.8
CVSSv3
CVE-2021-37736
A remote authentication bypass vulnerability exists in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x before 6.10.2 - - ClearPass Policy Manager 6.9.x before 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x before 6.8.9-HF1. Aruba has released patches for ...
Arubanetworks Clearpass Policy Manager
9.8
CVSSv3
CVE-2021-29145
A remote server side request forgery (SSRF) remote code execution vulnerability exists in Aruba ClearPass Policy Manager version(s) before 6.9.5, 6.8.9, 6.7.14-HF1. Aruba has released patches for Aruba ClearPass Policy Manager that address this security vulnerability.
9.8
CVSSv3
CVE-2020-7115
The ClearPass Policy Manager web interface is affected by a vulnerability that leads to authentication bypass. Upon successful bypass an attacker could then execute an exploit that would allow to remote command execution in the underlying operating system. Resolution: Fixed in 6....
Arubanetworks Clearpass Policy Manager
1 Github repository
9.8
CVSSv3
CVE-2020-7114
A vulnerability exists allowing attackers, when present in the same network segment as ClearPass' management interface, to make changes to certain databases in ClearPass by crafting HTTP packets. As a result of this attack, a possible complete cluster compromise might occur....
Arubanetworks Clearpass
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »