Arubanetworks » Clearpass : Security Vulnerabilities, CVEs, Published In 2014 (Information Leak)

CVE-2014-6624

The Insight module in Aruba Networks ClearPass before 6.3.6 and 6.4.x before 6.4.1 allows remote authenticated users to read arbitrary files via unspecified vectors.
Max CVSS
6.8
EPSS Score
0.16%
Published
2014-11-19
Updated
2017-09-08

CVE-2014-6622

Aruba Networks ClearPass before 6.3.6 and 6.4.x before 6.4.1 allows remote attackers to determine the validity of filenames via unspecified vectors.
Max CVSS
5.0
EPSS Score
0.30%
Published
2014-11-19
Updated
2014-11-19

CVE-2014-6621

Aruba Networks ClearPass before 6.3.6 and 6.4.x before 6.4.1 does not disable the troubleshooting and diagnostics page in production systems, which allows remote attackers to obtain version numbers, module configuration, and other sensitive information by reading the page.
Max CVSS
5.0
EPSS Score
0.30%
Published
2014-11-19
Updated
2014-11-19

CVE-2014-4031

The Policy Manager in Aruba Networks ClearPass 5.x, 6.0.x, 6.1.x through 6.1.4.61696, 6.2.x through 6.2.6.62196, and 6.3.x before 6.3.4 allows remote authenticated users to obtain database credentials via unspecified vectors.
Max CVSS
4.0
EPSS Score
0.12%
Published
2014-07-15
Updated
2014-07-15
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close