Clearpass Policy Manager Security Vulnerabilities and Issues — Clearpass Policy Manager CVE List

Lucene search

ArubanetworksClearpass Policy Manager

41 matches found

CVE•added 2021/07/08 8:15 p.m.•59 views

CVE-2021-34612

A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.10.0, 6.9.6 and 6.8.9. Aruba has released updates to ClearPass Policy Manager that address this security vulnerability.

6.5CVSS6.5AI score0.01743EPSS

CVE•added 2021/07/08 8:15 p.m.•57 views

CVE-2021-34615

6.5CVSS6.5AI score0.01743EPSS

CVE•added 2021/07/08 9:15 p.m.•52 views

CVE-2021-34616

6.5CVSS6.5AI score0.01743EPSS

CVE•added 2021/02/23 6:15 p.m.•48 views

CVE-2021-26682

A remote reflected cross-site scripting (XSS) vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the guest portal interface of ClearPass could allow a remote attacker to conduct a reflected cross-site scripting (XSS) ...

6.1CVSS5.8AI score0.00249EPSS

CVE•added 2021/07/08 8:15 p.m.•48 views

CVE-2021-34613

6.5CVSS6.5AI score0.01743EPSS

CVE•added 2021/07/08 3:15 p.m.•46 views

CVE-2021-29150

A remote insecure deserialization vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.10.0, 6.9.6 and 6.8.9. Aruba has released updates to ClearPass Policy Manager that address this security vulnerability.

9CVSS6.9AI score0.01426EPSS

CVE•added 2021/07/08 4:15 p.m.•44 views

CVE-2021-34610

9CVSS7.1AI score0.03295EPSS

CVE•added 2021/10/15 2:15 p.m.•41 views

CVE-2021-40986

A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x prior to 6.10.2 - - ClearPass Policy Manager 6.9.x prior to 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x prior to 6.8.9-HF1. Aruba has released patches for...

9CVSS7.2AI score0.02519EPSS

CVE•added 2021/10/15 3:15 p.m.•41 views

CVE-2021-40993

A remote SQL injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x prior to 6.10.2 - - ClearPass Policy Manager 6.9.x prior to 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x prior to 6.8.9-HF1. Aruba has released patches for ClearPass Pol...

8.1CVSS8.4AI score0.00242EPSS

CVE•added 2021/02/23 7:15 p.m.•39 views

CVE-2021-26679

A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass web-based management interface allows remote authenticated users to run arbitrary commands on the underlying ho...

9CVSS7.2AI score0.03289EPSS

CVE•added 2021/07/08 5:15 p.m.•39 views

CVE-2021-34609

A remote SQL injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.10.0, 6.9.6 and 6.8.9. Aruba has released updates to ClearPass Policy Manager that address this security vulnerability.

8.8CVSS8.9AI score0.00608EPSS

CVE•added 2021/10/15 3:15 p.m.•39 views

CVE-2021-40997

A remote authentication bypass vulnerability was discovered in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x prior to 6.10.2 - - ClearPass Policy Manager 6.9.x prior to 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x prior to 6.8.9-HF1. Aruba has released patches for Clear...

9.8CVSS9.6AI score0.00709EPSS

CVE•added 2021/02/23 6:15 p.m.•38 views

CVE-2021-26684

9CVSS7.2AI score0.03289EPSS

CVE•added 2021/07/08 4:15 p.m.•38 views

CVE-2021-29151

A remote authentication bypass vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.10.0, 6.9.6 and 6.8.9. Aruba has released updates to ClearPass Policy Manager that address this security vulnerability.

4.3CVSS4.9AI score0.00137EPSS

CVE•added 2021/07/08 4:15 p.m.•38 views

CVE-2021-34611

9CVSS7.1AI score0.02453EPSS

CVE•added 2021/02/23 7:15 p.m.•37 views

CVE-2021-26677

A local authenticated escalation of privilege vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in ClearPass OnGuard could allow local authenticated users on a Windows platform to elevate their privileges. A successful ...

7.8CVSS7.9AI score0.00041EPSS

CVE•added 2021/02/23 6:15 p.m.•37 views

CVE-2021-26681

A remote authenticated command Injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass CLI could allow remote authenticated users to run arbitrary commands on the underlying host. A successful explo...

9CVSS7.3AI score0.03558EPSS

CVE•added 2021/02/23 6:15 p.m.•37 views

CVE-2021-26683

9CVSS7.2AI score0.03289EPSS

CVE•added 2021/10/15 2:15 p.m.•37 views

CVE-2021-37738

A remote disclosure of sensitive information vulnerability was discovered in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x prior to 6.10.2 - - ClearPass Policy Manager 6.9.x prior to 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x prior to 6.8.9-HF1. Aruba has released pat...

7.5CVSS7.3AI score0.00319EPSS

CVE•added 2021/10/15 12:15 p.m.•37 views

CVE-2021-40999

7.2CVSS7.2AI score0.01279EPSS

CVE•added 2021/02/23 7:15 p.m.•36 views

CVE-2021-26680

9CVSS7.2AI score0.01841EPSS

CVE•added 2021/02/23 6:15 p.m.•36 views

CVE-2021-26686

A remote authenticated SQL Injection vulnerabilitiy was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the web-based management interface API of ClearPass could allow an authenticated remote attacker to conduct SQL injection attack...

6.5CVSS6.5AI score0.00202EPSS

CVE•added 2021/10/15 2:15 p.m.•36 views

CVE-2021-40987

9CVSS7.2AI score0.02519EPSS

CVE•added 2021/10/15 3:15 p.m.•36 views

CVE-2021-40991

7.2CVSS6.7AI score0.00784EPSS

CVE•added 2021/02/23 7:15 p.m.•35 views

CVE-2020-7120

A local authenticated buffer overflow vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in ClearPass OnGuard could allow local authenticated users to cause a buffer overflow condition. A successful exploit could allow a...

5.3CVSS5.9AI score0.00072EPSS

CVE•added 2021/02/23 5:15 p.m.•35 views

CVE-2021-26685

6.5CVSS6.5AI score0.00202EPSS

CVE•added 2021/07/08 4:15 p.m.•35 views

CVE-2021-29152

A remote denial of service (DoS) vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.10.0, 6.9.6 and 6.8.9. Aruba has released updates to ClearPass Policy Manager that address this security vulnerability.

6.8CVSS6.4AI score0.00565EPSS

CVE•added 2021/07/08 5:15 p.m.•35 views

CVE-2021-34614

6.5CVSS6.5AI score0.01743EPSS

CVE•added 2021/10/15 1:15 p.m.•35 views

CVE-2021-37737

8.8CVSS9AI score0.00608EPSS

CVE•added 2021/10/15 3:15 p.m.•35 views

CVE-2021-40994

6.5CVSS6.5AI score0.01518EPSS

CVE•added 2021/10/15 3:15 p.m.•35 views

CVE-2021-40998

9CVSS7.2AI score0.02519EPSS

CVE•added 2021/02/23 6:15 p.m.•34 views

CVE-2021-26678

A remote unauthenticated stored cross-site scripting (XSS) vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the web-based management interface of ClearPass could allow an unauthenticated remote attacker to conduct a...

6.1CVSS5.8AI score0.00469EPSS

CVE•added 2021/10/15 1:15 p.m.•34 views

CVE-2021-37736

9.8CVSS9.6AI score0.00691EPSS

CVE•added 2021/10/15 2:15 p.m.•34 views

CVE-2021-37739

9CVSS7.2AI score0.03295EPSS

CVE•added 2021/10/15 2:15 p.m.•34 views

CVE-2021-40989

A local escalation of privilege vulnerability was discovered in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x prior to 6.10.2 - - ClearPass Policy Manager 6.9.x prior to 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x prior to 6.8.9-HF1. Aruba has released patches for Clea...

7.8CVSS7.8AI score0.00039EPSS

CVE•added 2021/10/15 2:15 p.m.•34 views

CVE-2021-40992

7.2CVSS7.3AI score0.00624EPSS

CVE•added 2021/10/15 3:15 p.m.•34 views

CVE-2021-40995

6.5CVSS6.5AI score0.01518EPSS

CVE•added 2021/10/15 2:15 p.m.•33 views

CVE-2021-40988

A remote directory traversal vulnerability was discovered in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x prior to 6.10.2 - - ClearPass Policy Manager 6.9.x prior to 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x prior to 6.8.9-HF1. Aruba has released patches for ClearPa...

9CVSS7AI score0.05476EPSS

CVE•added 2021/10/15 3:15 p.m.•32 views

CVE-2021-40996

9.8CVSS9.6AI score0.00709EPSS

CVE•added 2021/04/28 3:15 p.m.•31 views

CVE-2020-7123

A local escalation of privilege vulnerability was discovered in Aruba ClearPass Policy Manager version(s) prior to 6.9.5, 6.8.9, 6.7.14-HF1. Aruba has released patches for Aruba ClearPass Policy Manager that address this security vulnerability.

7.8CVSS7.8AI score0.00039EPSS

CVE•added 2021/10/15 2:15 p.m.•28 views

CVE-2021-40990

6.5CVSS6.3AI score0.00256EPSS