Arubanetworks

Clearpass Policy Manager

136 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9

CVE-2021-26679

  • EPSS 4.14%
  • Veröffentlicht 23.02.2021 19:15:13
  • Zuletzt bearbeitet 21.11.2024 05:56:39

A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass web-based management interface allows remote authenticated use...

6.1

CVE-2021-26678

  • EPSS 0.47%
  • Veröffentlicht 23.02.2021 18:15:13
  • Zuletzt bearbeitet 21.11.2024 05:56:39

A remote unauthenticated stored cross-site scripting (XSS) vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the web-based management interface of ClearPass could allo...

9

CVE-2021-26681

  • EPSS 4.47%
  • Veröffentlicht 23.02.2021 18:15:13
  • Zuletzt bearbeitet 21.11.2024 05:56:39

A remote authenticated command Injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass CLI could allow remote authenticated users to run arbitrary co...

6.1

CVE-2021-26682

  • EPSS 0.25%
  • Veröffentlicht 23.02.2021 18:15:13
  • Zuletzt bearbeitet 21.11.2024 05:56:39

A remote reflected cross-site scripting (XSS) vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the guest portal interface of ClearPass could allow a remote attacker t...

9

CVE-2021-26683

  • EPSS 4.14%
  • Veröffentlicht 23.02.2021 18:15:13
  • Zuletzt bearbeitet 21.11.2024 05:56:40

A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass web-based management interface allows remote authenticated use...

9

CVE-2021-26684

  • EPSS 4.14%
  • Veröffentlicht 23.02.2021 18:15:13
  • Zuletzt bearbeitet 21.11.2024 05:56:40

A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass web-based management interface allows remote authenticated use...

6.5

CVE-2021-26686

  • EPSS 0.2%
  • Veröffentlicht 23.02.2021 18:15:13
  • Zuletzt bearbeitet 21.11.2024 05:56:40

A remote authenticated SQL Injection vulnerabilitiy was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the web-based management interface API of ClearPass could allow an authenticate...

6.5

CVE-2021-26685

  • EPSS 0.2%
  • Veröffentlicht 23.02.2021 17:15:13
  • Zuletzt bearbeitet 21.11.2024 05:56:40

A remote authenticated SQL Injection vulnerabilitiy was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the web-based management interface API of ClearPass could allow an authenticate...

10

CVE-2020-7115

Exploit
  • EPSS 61.65%
  • Veröffentlicht 03.06.2020 13:15:11
  • Zuletzt bearbeitet 21.11.2024 05:36:39

The ClearPass Policy Manager web interface is affected by a vulnerability that leads to authentication bypass. Upon successful bypass an attacker could then execute an exploit that would allow to remote command execution in the underlying operating s...

9

CVE-2020-7116

  • EPSS 1.94%
  • Veröffentlicht 03.06.2020 13:15:11
  • Zuletzt bearbeitet 21.11.2024 05:36:39

The ClearPass Policy Manager WebUI administrative interface has an authenticated command remote execution. When the attacker is already authenticated to the administrative interface, they could then exploit the system, leading to remote command execu...