Vulnerabilities > Arubanetworks
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-02-04 | CVE-2025-25039 | Unspecified vulnerability in Arubanetworks Clearpass Policy Manager A vulnerability in the web-based management interface of HPE Aruba Networking ClearPass Policy Manager (CPPM) allows remote authenticated users to run arbitrary commands on the underlying host. | 8.8 |
| 2025-02-04 | CVE-2025-23058 | Unspecified vulnerability in Arubanetworks Clearpass Policy Manager A vulnerability in the ClearPass Policy Manager web-based management interface allows a low-privileged (read-only) authenticated remote attacker to gain unauthorized access to data and the ability to execute functions that should be restricted to administrators only with read/write privileges. | 8.1 |
| 2025-02-04 | CVE-2025-23059 | Unspecified vulnerability in Arubanetworks Clearpass Policy Manager A vulnerability in the web-based management interface of HPE Aruba Networking ClearPass Policy Manager exposes directories containing sensitive information. | 4.9 |
| 2025-02-04 | CVE-2025-23060 | Unspecified vulnerability in Arubanetworks Clearpass Policy Manager A vulnerability in HPE Aruba Networking ClearPass Policy Manager may, under certain circumstances, expose sensitive unencrypted information. | 8.1 |
| 2025-01-28 | CVE-2025-23055 | Unspecified vulnerability in Arubanetworks Fabric Composer A vulnerability in the web management interface of HPE Aruba Networking Fabric Composer could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack. | 5.4 |
| 2025-01-28 | CVE-2025-23056 | Unspecified vulnerability in Arubanetworks Fabric Composer A vulnerability in the web management interface of HPE Aruba Networking Fabric Composer could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack. | 5.4 |
| 2025-01-28 | CVE-2025-23057 | Unspecified vulnerability in Arubanetworks Fabric Composer A vulnerability in the web management interface of HPE Aruba Networking Fabric Composer could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack. | 5.4 |
| 2024-08-06 | CVE-2024-42398 | Multiple unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the Soft AP daemon accessed via the PAPI protocol. | 5.3 |
| 2024-08-06 | CVE-2024-42399 | Multiple unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the Soft AP daemon accessed via the PAPI protocol. | 5.3 |
| 2024-08-06 | CVE-2024-42400 | Multiple unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the Soft AP daemon accessed via the PAPI protocol. | 5.3 |