Vulnerabilities > Arubanetworks > Clearpass Policy Manager > 6.6.5
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-02-23 | CVE-2021-26684 | Command Injection vulnerability in Arubanetworks Clearpass Policy Manager A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. | 9.0 |
| 2021-02-23 | CVE-2021-26683 | Command Injection vulnerability in Arubanetworks Clearpass Policy Manager A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. | 9.0 |
| 2021-02-23 | CVE-2021-26682 | Cross-site Scripting vulnerability in Arubanetworks Clearpass Policy Manager A remote reflected cross-site scripting (XSS) vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. | 4.3 |
| 2021-02-23 | CVE-2021-26681 | Command Injection vulnerability in Arubanetworks Clearpass Policy Manager A remote authenticated command Injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. | 9.0 |
| 2021-02-23 | CVE-2021-26678 | Cross-site Scripting vulnerability in Arubanetworks Clearpass Policy Manager A remote unauthenticated stored cross-site scripting (XSS) vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. | 4.3 |
| 2021-02-23 | CVE-2021-26685 | SQL Injection vulnerability in Arubanetworks Clearpass Policy Manager A remote authenticated SQL Injection vulnerabilitiy was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. | 5.5 |
| 2018-12-07 | CVE-2018-7079 | Incorrect Authorization vulnerability in Arubanetworks Clearpass Policy Manager Aruba ClearPass Policy Manager guest authorization failure. | 6.5 |
| 2018-12-07 | CVE-2018-7067 | Improper Authentication vulnerability in Arubanetworks Clearpass Policy Manager A Remote Authentication bypass in Aruba ClearPass Policy Manager leads to complete cluster compromise. | 6.5 |
| 2018-12-07 | CVE-2018-7066 | Unspecified vulnerability in Arubanetworks Clearpass Policy Manager An unauthenticated remote command execution exists in Aruba ClearPass Policy Manager on linked devices. | 9.3 |
| 2018-12-07 | CVE-2018-7065 | SQL Injection vulnerability in Arubanetworks Clearpass Policy Manager An authenticated SQL injection vulnerability in Aruba ClearPass Policy Manager can lead to privilege escalation. | 6.5 |