Hewlett Packard Enterprise Aruba Clearpass Policy Manager vulnerabilities

127 known vulnerabilities affecting hewlett_packard_enterprise/aruba_clearpass_policy_manager.

Total CVEs

127

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

CRITICAL16HIGH69MEDIUM42

Vulnerabilities

Page 7 of 7

CVE-2018-7065HIGHCVSS 7.2vAll versions of ClearPass prior to 6.7.6, ClearPass 6.6.10 and earlier without hotfix applied2018-12-07

CVE-2018-7065 [HIGH] CWE-89 CVE-2018-7065: An authenticated SQL injection vulnerability in Aruba ClearPass Policy Manager can lead to privilege An authenticated SQL injection vulnerability in Aruba ClearPass Policy Manager can lead to privilege escalation. All versions of ClearPass are affected by multiple authenticated SQL injection vulnerabilities. In each case, an authenticated administrative user of any type could exploit this vulnerability to gain access to "appadmin" credentials, leading t

CVE-2017-5824CRITICALCVSS 9.8v6.6.x2018-02-15

CVE-2017-5824 [CRITICAL] CVE-2017-5824: An unauthenticated remote code execution vulnerability in HPE Aruba ClearPass Policy Manager version An unauthenticated remote code execution vulnerability in HPE Aruba ClearPass Policy Manager version 6.6.x was found.

CVE-2017-5825HIGHCVSS 8.8v6.6.x2018-02-15

CVE-2017-5825 [HIGH] CVE-2017-5825: A privilege escalation vulnerability in HPE Aruba ClearPass Policy Manager version 6.6.x was found. A privilege escalation vulnerability in HPE Aruba ClearPass Policy Manager version 6.6.x was found.

CVE-2017-5828HIGHCVSS 8.1v6.6.x2018-02-15

CVE-2017-5828 [HIGH] CWE-611 CVE-2017-5828: An arbitrary command execution vulnerability in HPE Aruba ClearPass Policy Manager version 6.6.x was An arbitrary command execution vulnerability in HPE Aruba ClearPass Policy Manager version 6.6.x was found.

CVE-2017-5826HIGHCVSS 8.8v6.6.x2018-02-15

CVE-2017-5826 [HIGH] CVE-2017-5826: An authenticated remote code execution vulnerability in HPE Aruba ClearPass Policy Manager version 6 An authenticated remote code execution vulnerability in HPE Aruba ClearPass Policy Manager version 6.6.x was found.

CVE-2017-5829HIGHCVSS 7.8v6.6.x2018-02-15

CVE-2017-5829 [HIGH] CVE-2017-5829: An access restriction bypass vulnerability in HPE Aruba ClearPass Policy Manager version 6.6.x was f An access restriction bypass vulnerability in HPE Aruba ClearPass Policy Manager version 6.6.x was found.

CVE-2017-5827MEDIUMCVSS 5.4v6.6.x2018-02-15

CVE-2017-5827 [MEDIUM] CWE-79 CVE-2017-5827: A reflected cross site scripting vulnerability in HPE Aruba ClearPass Policy Manager version 6.6.x w A reflected cross site scripting vulnerability in HPE Aruba ClearPass Policy Manager version 6.6.x was found.

← Previous7 / 7