Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clearpass vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2014-6621
Aruba Networks ClearPass prior to 6.3.6 and 6.4.x prior to 6.4.1 does not disable the troubleshooting and diagnostics page in production systems, which allows remote malicious users to obtain version numbers, module configuration, and other sensitive information by reading the pa...
Arubanetworks Clearpass
Arubanetworks Clearpass 6.4.0
383
VMScore
CVE-2014-6623
Cross-site request forgery (CSRF) vulnerability in the Insight module in Aruba Networks ClearPass prior to 6.3.6 and 6.4.x prior to 6.4.1 allows remote malicious users to hijack the authentication of a logged in user via unspecified vectors.
Arubanetworks Clearpass
Arubanetworks Clearpass 6.4.0
605
VMScore
CVE-2014-6624
The Insight module in Aruba Networks ClearPass prior to 6.3.6 and 6.4.x prior to 6.4.1 allows remote authenticated users to read arbitrary files via unspecified vectors.
Arubanetworks Clearpass 6.4.0
Arubanetworks Clearpass
801
VMScore
CVE-2014-6625
The Policy Manager in Aruba Networks ClearPass prior to 6.3.6 and 6.4.x prior to 6.4.1 allows remote authenticated users to gain privileges via unspecified vectors.
Arubanetworks Clearpass 6.4.0
Arubanetworks Clearpass
890
VMScore
CVE-2014-6626
Aruba Networks ClearPass prior to 6.3.6 and 6.4.x prior to 6.4.1 does not properly restrict access to unspecified administrative functions, which allows remote malicious users to bypass authentication and execute administrative actions via unknown vectors.
Arubanetworks Clearpass
Arubanetworks Clearpass 6.4.0
801
VMScore
CVE-2014-6627
Aruba Networks ClearPass prior to 6.3.5 and 6.4.x prior to 6.4.1 allows remote malicious users to execute arbitrary commands via unspecified vectors, a different vulnerability than CVE-2014-5342.
Arubanetworks Clearpass
Arubanetworks Clearpass 6.4.0
383
VMScore
CVE-2014-6620
Cross-site scripting (XSS) vulnerability in Aruba Networks ClearPass prior to 6.3.6 and 6.4.x prior to 6.4.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Arubanetworks Clearpass
Arubanetworks Clearpass 6.4.0
445
VMScore
CVE-2014-6622
Aruba Networks ClearPass prior to 6.3.6 and 6.4.x prior to 6.4.1 allows remote malicious users to determine the validity of filenames via unspecified vectors.
Arubanetworks Clearpass
Arubanetworks Clearpass 6.4.0
NA
CVE-2023-43507
A vulnerability in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote malicious user to conduct SQL injection attacks against the ClearPass Policy Manager instance. An attacker could exploit this vulnerability to obtain and modify s...
Arubanetworks Clearpass Policy Manager
Arubanetworks Clearpass Policy Manager 6.9.13
Arubanetworks Clearpass Policy Manager 6.10.8
801
VMScore
CVE-2021-40986
A remote arbitrary command execution vulnerability exists in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x before 6.10.2 - - ClearPass Policy Manager 6.9.x before 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x before 6.8.9-HF1. Aruba has released patche...
Arubanetworks Clearpass Policy Manager
Arubanetworks Clearpass Policy Manager 6.8.9
Arubanetworks Clearpass Policy Manager 6.9.7
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »