Vulnerabilities > Arubanetworks
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-12-03 | CVE-2024-51773 | Unspecified vulnerability in Arubanetworks Clearpass Policy Manager A vulnerability in the HPE Aruba Networking ClearPass Policy Manager web-based management interface could allow an authenticated remote Attacker to conduct a stored cross-site scripting (XSS) attack. | 5.4 |
| 2024-12-03 | CVE-2024-53672 | Unspecified vulnerability in Arubanetworks Clearpass Policy Manager A vulnerability in the ClearPass Policy Manager web-based management interface allows remote authenticated users to run arbitrary commands on the underlying host. | 6.3 |
| 2024-12-03 | CVE-2024-51771 | Unspecified vulnerability in Arubanetworks Clearpass Policy Manager A vulnerability in the HPE Aruba Networking ClearPass Policy Manager web-based management interface could allow an authenticated remote threat actor to conduct a remote code execution attack. | 8.8 |
| 2024-08-06 | CVE-2024-42398 | Multiple unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the Soft AP daemon accessed via the PAPI protocol. | 5.3 |
| 2024-08-06 | CVE-2024-42399 | Multiple unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the Soft AP daemon accessed via the PAPI protocol. | 5.3 |
| 2024-08-06 | CVE-2024-42400 | Multiple unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the Soft AP daemon accessed via the PAPI protocol. | 5.3 |
| 2024-08-06 | CVE-2024-42393 | Out-of-bounds Write vulnerability in multiple products There are vulnerabilities in the Soft AP Daemon Service which could allow a threat actor to execute an unauthenticated RCE attack. | 9.8 |
| 2024-08-06 | CVE-2024-42394 | Out-of-bounds Write vulnerability in multiple products There are vulnerabilities in the Soft AP Daemon Service which could allow a threat actor to execute an unauthenticated RCE attack. | 9.8 |
| 2024-08-06 | CVE-2024-42395 | Out-of-bounds Write vulnerability in multiple products There is a vulnerability in the AP Certificate Management Service which could allow a threat actor to execute an unauthenticated RCE attack. | 9.8 |
| 2024-07-30 | CVE-2024-41915 | Unspecified vulnerability in Arubanetworks Clearpass Policy Manager A vulnerability in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct SQL injection attacks against the ClearPass Policy Manager instance. | 8.8 |