Vulnerabilities > Arubanetworks > Clearpass Policy Manager > 6.8.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-02-23 | CVE-2021-26684 | OS Command Injection vulnerability in Arubanetworks Clearpass Policy Manager A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. | 7.2 |
| 2021-02-23 | CVE-2021-26683 | OS Command Injection vulnerability in Arubanetworks Clearpass Policy Manager A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. | 7.2 |
| 2021-02-23 | CVE-2021-26682 | Cross-site Scripting vulnerability in Arubanetworks Clearpass Policy Manager A remote reflected cross-site scripting (XSS) vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. | 6.1 |
| 2021-02-23 | CVE-2021-26681 | OS Command Injection vulnerability in Arubanetworks Clearpass Policy Manager A remote authenticated command Injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. | 7.2 |
| 2021-02-23 | CVE-2021-26678 | Cross-site Scripting vulnerability in Arubanetworks Clearpass Policy Manager A remote unauthenticated stored cross-site scripting (XSS) vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. | 6.1 |
| 2021-02-23 | CVE-2021-26685 | SQL Injection vulnerability in Arubanetworks Clearpass Policy Manager A remote authenticated SQL Injection vulnerabilitiy was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. | 6.5 |
| 2020-06-03 | CVE-2020-7117 | Unspecified vulnerability in Arubanetworks Clearpass Policy Manager The ClearPass Policy Manager WebUI administrative interface has an authenticated command remote execution. | 7.2 |
| 2020-06-03 | CVE-2020-7116 | Unspecified vulnerability in Arubanetworks Clearpass Policy Manager The ClearPass Policy Manager WebUI administrative interface has an authenticated command remote execution. | 7.2 |
| 2020-06-03 | CVE-2020-7115 | Missing Authentication for Critical Function vulnerability in Arubanetworks Clearpass Policy Manager The ClearPass Policy Manager web interface is affected by a vulnerability that leads to authentication bypass. | 9.8 |