Aruba clearpass policy manager
This hub aggregates every CVE we track for Aruba clearpass policy manager, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.
49
CVEs tracked
4
Critical
31
High
0
In CISA KEV
Severity distribution
HIGH31MEDIUM14CRITICAL4
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Aruba clearpass policy manager.
- CVE-2024-26302A vulnerability in the web-based management interface of ClearPass Policy Manager could allow a remote attacker authenticated with low privileges to access sensitive information. A successful explo...4.8
- CVE-2024-26301A vulnerability in the web-based management interface of ClearPass Policy Manager could allow a remote attacker authenticated with low privileges to access sensitive information. A successful explo...6.5
- CVE-2024-26300A vulnerability in the guest interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against an administrative user ...6.6
- CVE-2024-26299A vulnerability in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against an admin...6.6
- CVE-2024-26298Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an...7.2
- CVE-2024-26297Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an...7.2
- CVE-2024-26296Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an...7.2
- CVE-2024-26295Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an...7.2
- CVE-2024-26294Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an...7.2
- CVE-2023-43510Authenticated Remote Command Injection in ClearPass Policy Manager Web-Based Management Interface Leading to Partial System Compromise4.7
- CVE-2023-43509Unauthenticated Endpoint Allows Sending Arbitrary OnGuard Notifications5.8
- CVE-2023-43508Authorization Bypass Leading to Privilege Escalation in ClearPass Policy Manager Web-Based Management Interface6.3
- CVE-2023-43507Authenticated SQL Injection Vulnerability in ClearPass Policy Manager Web-based Management Interface7.2
- CVE-2023-43506Local Privilege Escalation in ClearPass OnGuard Linux Agent7.8
- CVE-2023-25596Authenticated Sensitive Information Disclosure in ClearPass Policy Manager4.5
Product normalization is registry-driven with AI assist and human review. How it works