Vulnerabilities > Arubanetworks
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-02-04 | CVE-2025-25039 | Unspecified vulnerability in Arubanetworks Clearpass Policy Manager A vulnerability in the web-based management interface of HPE Aruba Networking ClearPass Policy Manager (CPPM) allows remote authenticated users to run arbitrary commands on the underlying host. | 8.8 |
| 2025-02-04 | CVE-2025-23058 | Unspecified vulnerability in Arubanetworks Clearpass Policy Manager A vulnerability in the ClearPass Policy Manager web-based management interface allows a low-privileged (read-only) authenticated remote attacker to gain unauthorized access to data and the ability to execute functions that should be restricted to administrators only with read/write privileges. | 8.1 |
| 2025-02-04 | CVE-2025-23059 | Unspecified vulnerability in Arubanetworks Clearpass Policy Manager A vulnerability in the web-based management interface of HPE Aruba Networking ClearPass Policy Manager exposes directories containing sensitive information. | 4.9 |
| 2025-02-04 | CVE-2025-23060 | Unspecified vulnerability in Arubanetworks Clearpass Policy Manager A vulnerability in HPE Aruba Networking ClearPass Policy Manager may, under certain circumstances, expose sensitive unencrypted information. | 8.1 |
| 2025-01-28 | CVE-2025-23053 | Unspecified vulnerability in Arubanetworks Fabric Composer A privilege escalation vulnerability exists in the web-based management interface of HPE Aruba Networking Fabric Composer. | 6.5 |
| 2025-01-28 | CVE-2025-23054 | Unspecified vulnerability in Arubanetworks Fabric Composer A vulnerability in the web-based management interface of HPE Aruba Networking Fabric Composer could allow an authenticated low privilege operator user to perform operations not allowed by their privilege level. | 6.5 |
| 2025-01-28 | CVE-2025-23055 | Unspecified vulnerability in Arubanetworks Fabric Composer A vulnerability in the web management interface of HPE Aruba Networking Fabric Composer could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack. | 5.4 |
| 2025-01-28 | CVE-2025-23056 | Unspecified vulnerability in Arubanetworks Fabric Composer A vulnerability in the web management interface of HPE Aruba Networking Fabric Composer could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack. | 5.4 |
| 2025-01-28 | CVE-2025-23057 | Unspecified vulnerability in Arubanetworks Fabric Composer A vulnerability in the web management interface of HPE Aruba Networking Fabric Composer could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack. | 5.4 |
| 2024-12-03 | CVE-2024-51772 | Unspecified vulnerability in Arubanetworks Clearpass Policy Manager An authenticated RCE vulnerability in the ClearPass Policy Manager web-based management interface allows remote authenticated users to run arbitrary commands on the underlying host. | 8.0 |