Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2017-10-04	CVE-2017-14491	Out-of-bounds Write vulnerability in multiple products Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response. network low complexity thekelleys redhat canonical debian opensuse suse nvidia huawei arista siemens arubanetworks synology CWE-787 critical	9.8
2017-08-29	CVE-2015-4649	Improper Access Control vulnerability in Arubanetworks Clearpass Aruba Networks ClearPass Policy Manager before 6.4.7 and 6.5.x before 6.5.2 allows remote authenticated administrators to gain root privileges via unspecified vectors, a different vulnerability than CVE-2015-3654. network low complexity arubanetworks CWE-284 critical	9.0
2017-08-29	CVE-2015-3654	Improper Access Control vulnerability in Arubanetworks Clearpass Aruba Networks ClearPass Policy Manager before 6.4.7 and 6.5.x before 6.5.2 allows remote authenticated administrators to gain root privileges via unspecified vectors, a different vulnerability than CVE-2015-4649. network low complexity arubanetworks CWE-284 critical	9.0
2017-08-29	CVE-2015-3653	Improper Access Control vulnerability in Arubanetworks Clearpass Aruba Networks ClearPass Policy Manager before 6.4.7 and 6.5.x before 6.5.2 allows remote authenticated administrators to write to arbitrary files within the underlying operating system and consequently cause a denial of service or gain privileges by leveraging incorrect permission checking. network low complexity arubanetworks CWE-284 critical	9.0
2015-05-28	CVE-2015-1550	Path Traversal vulnerability in Arubanetworks Clearpass Policy Manager Directory traversal vulnerability in Aruba Networks ClearPass Policy Manager (CPPM) before 6.4.5 allows remote administrators to execute arbitrary files via unspecified vectors. network low complexity arubanetworks CWE-22 critical	9.0
2015-05-28	CVE-2014-6628	Remote Code Execution vulnerability in Aruba Networks ClearPass Policy Manager Aruba Networks ClearPass Policy Manager (CPPM) before 6.5.0 allows remote administrators to execute arbitrary code via unspecified vectors. network low complexity arubanetworks critical	9.0
2014-11-25	CVE-2014-8368	Permissions, Privileges, and Access Controls vulnerability in Arubanetworks Airwave The web interface in Aruba Networks AirWave before 7.7.14 and 8.x before 8.0.5 allows remote authenticated users to gain privileges and execute arbitrary commands via unspecified vectors. network low complexity arubanetworks CWE-264 critical	9.0
2014-11-19	CVE-2014-6627	Improper Access Control vulnerability in Arubanetworks Clearpass Aruba Networks ClearPass before 6.3.5 and 6.4.x before 6.4.1 allows remote attackers to execute arbitrary commands via unspecified vectors, a different vulnerability than CVE-2014-5342. network low complexity arubanetworks CWE-284 critical	9.0
2014-11-19	CVE-2014-6626	Improper Access Control vulnerability in Arubanetworks Clearpass Aruba Networks ClearPass before 6.3.6 and 6.4.x before 6.4.1 does not properly restrict access to unspecified administrative functions, which allows remote attackers to bypass authentication and execute administrative actions via unknown vectors. network low complexity arubanetworks CWE-284 critical	10.0
2014-11-19	CVE-2014-6625	Improper Access Control vulnerability in Arubanetworks Clearpass The Policy Manager in Aruba Networks ClearPass before 6.3.6 and 6.4.x before 6.4.1 allows remote authenticated users to gain privileges via unspecified vectors. network low complexity arubanetworks CWE-284 critical	9.0