Lucene search
+L

20 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-2111

Malware in sbrugna...

7.1CVSS7AI score0.0057EPSS
Exploits0References2
euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2014-8204

Malware in sbrugna...

7.5CVSS6.4AI score0.01664EPSS
Exploits0References4
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-6502

Malware in sbrugna...

4.3CVSS6.4AI score0.00983EPSS
Exploits0References3
cnvd
cnvd
added 2020/04/17 12:0 a.m.4 views

Aruba Networks ClearPass Code Execution Vulnerability

Aruba Networks ClearPass is an access management system from Aruba Networks that integrates network control, application and device management capabilities. A security vulnerability exists in Aruba Networks ClearPass. An attacker could exploit the vulnerability to execute code...

7.2CVSS7.1AI score0.01886EPSS
Exploits0
prion
prion
added 2018/01/08 7:29 p.m.20 views

Design/Logic Flaw

Aruba Networks ClearPass Policy Manager 6.1.x, 6.2.x before 6.2.5.61640 and 6.3.x before 6.3.0.61712, when configured to use tunneled and non-tunneled EAP methods in a single policy construct, allows remote authenticated users to gain privileges by advertising independent inner and outer identiti...

4.9CVSS7AI score0.0057EPSS
Exploits0References1Affected Software1
nvd
nvd
added 2017/10/16 6:29 p.m.19 views

CVE-2015-4650

Aruba Networks ClearPass Policy Manager before 6.4.7 and 6.5.x before 6.5.2 allows remote attackers to gain shell access and execute arbitrary code with root privileges via unspecified vectors...

10CVSS9.9AI score0.05982EPSS
Exploits0References2
cvelist
cvelist
added 2017/08/29 3:0 p.m.17 views

CVE-2015-3655

Cross-site request forgery CSRF vulnerability in Aruba Networks ClearPass Policy Manager before 6.4.7 and 6.5.x before 6.5.2 allows remote attackers to hijack the authentication of administrators by leveraging improper enforcement of the anti-CSRF token...

9AI score0.0072EPSS
Exploits0References2
cve
cve
added 2015/05/28 2:0 p.m.53 views

CVE-2015-4132

Aruba Networks ClearPass Policy Manager (CPPM) is affected by multiple XSS vulnerabilities in versions before 6.4.5. The issue allows remote administrators to inject arbitrary web script/HTML via unspecified vectors. The CNVD entry additionally notes a directory traversal security vulnerability i...

3.5CVSS5.8AI score0.00641EPSS
Exploits0References2Affected Software1
nvd
nvd
added 2014/11/19 6:59 p.m.19 views

CVE-2014-6625

The Policy Manager in Aruba Networks ClearPass before 6.3.6 and 6.4.x before 6.4.1 allows remote authenticated users to gain privileges via unspecified vectors...

9CVSS6.5AI score0.01535EPSS
Exploits0References2
nvd
nvd
added 2014/11/19 6:59 p.m.19 views

CVE-2014-6621

Aruba Networks ClearPass before 6.3.6 and 6.4.x before 6.4.1 does not disable the troubleshooting and diagnostics page in production systems, which allows remote attackers to obtain version numbers, module configuration, and other sensitive information by reading the page...

5CVSS6.2AI score0.01173EPSS
Exploits0References2
cvelist
cvelist
added 2014/11/19 6:0 p.m.20 views

CVE-2014-6626

Aruba Networks ClearPass before 6.3.6 and 6.4.x before 6.4.1 does not properly restrict access to unspecified administrative functions, which allows remote attackers to bypass authentication and execute administrative actions via unknown vectors...

7.3AI score0.0231EPSS
Exploits0References2
cvelist
cvelist
added 2014/11/19 6:0 p.m.21 views

CVE-2014-6625

The Policy Manager in Aruba Networks ClearPass before 6.3.6 and 6.4.x before 6.4.1 allows remote authenticated users to gain privileges via unspecified vectors...

6.5AI score0.01535EPSS
Exploits0References2
cve
cve
added 2014/11/19 6:0 p.m.48 views

CVE-2014-6624

Summary: CVE-2014-6624 affects Aruba Networks ClearPass Insight module. The vulnerability exists in ClearPass Insight before 6.3.6 and in 6.4.x before 6.4.1. Affected software: Aruba Networks ClearPass (Insight module); affected versions are <6.3.6 and

6.8CVSS6.4AI score0.01281EPSS
Exploits0References4Affected Software1
cve
cve
added 2014/11/19 6:0 p.m.46 views

CVE-2014-6625

CVE-2014-6625 concerns Aruba Networks ClearPass Policy Manager. The vulnerability affects ClearPass before 6.3.6 and 6.4.x before 6.4.1, where remote authenticated users can gain privileges. The available documents specify the impact (privilege escalation) and affected versions, but do not disclo...

9CVSS6.7AI score0.01535EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2014/11/07 7:0 p.m.23 views

CVE-2014-6623

Cross-site request forgery CSRF vulnerability in the Insight module in Aruba Networks ClearPass before 6.3.6 and 6.4.x before 6.4.1 allows remote attackers to hijack the authentication of a logged in user via unspecified vectors...

7.1AI score0.00983EPSS
Exploits0References2
prion
prion
added 2014/08/29 1:55 p.m.19 views

Design/Logic Flaw

The management console in Aruba Networks ClearPass Policy Manager 6.3.0.60730 allows local users to execute arbitrary commands via shell metacharacters in certain arguments of a valid command, as demonstrated by the 1 system status-rasession and 2 network ping commands...

9CVSS7.7AI score0.0154EPSS
Exploits0References5Affected Software1
nvd
nvd
added 2014/07/15 2:55 p.m.17 views

CVE-2014-4031

The Policy Manager in Aruba Networks ClearPass 5.x, 6.0.x, 6.1.x through 6.1.4.61696, 6.2.x through 6.2.6.62196, and 6.3.x before 6.3.4 allows remote authenticated users to obtain database credentials via unspecified vectors...

4CVSS6.2AI score0.00937EPSS
Exploits0References2
cvelist
cvelist
added 2014/07/14 2:0 p.m.24 views

CVE-2014-4013

SQL injection vulnerability in the Policy Manager in Aruba Networks ClearPass 5.x, 6.0.x, 6.1.x through 6.1.4.61696, 6.2.x through 6.2.6.62196, and 6.3.x before 6.3.4 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors...

7.9AI score0.00565EPSS
Exploits0References2
cve
cve
added 2014/07/14 2:0 p.m.43 views

CVE-2014-4013

The CVE-2014-4013 entry describes a SQL injection vulnerability in the Policy Manager of Aruba Networks ClearPass. Affected products/versions include ClearPass 5.x, 6.0.x, 6.1.x up to 6.1.4.61696, 6.2.x up to 6.2.6.62196, and 6.3.x before 6.3.4. The issue allows remote authenticated users to exec...

4.9CVSS8.2AI score0.00565EPSS
Exploits0References2Affected Software1
prion
prion
added 2013/10/01 5:55 p.m.15 views

Design/Logic Flaw

The Sponsorship Confirmation functionality in Aruba Networks ClearPass 5.x, 6.0.1, and 6.0.2, and Amigopod/ClearPass Guest 3.0 through 3.9.7, allows remote attackers to bypass intended access restrictions and approve a request by sending a guest request, then using "parameter manipulation" in...

5CVSS7.1AI score0.01358EPSS
Exploits0References3Affected Software2
Rows per page
Query Builder