Unrated severityNVD Advisory· Published Nov 25, 2014· Updated Jun 17, 2026
CVE-2014-8367
CVE-2014-8367
Description
SQL injection vulnerability in Aruba Networks ClearPass Policy Manager (CPPM) 6.2.x, 6.3.x before 6.3.6, and 6.4.x before 6.4.2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Affected products
3cpe:2.3:a:arubanetworks:clearpass_policy_manager:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:arubanetworks:clearpass_policy_manager:*:*:*:*:*:*:*:*range: >=6.2.0,<=6.2.6
- cpe:2.3:a:arubanetworks:clearpass_policy_manager:6.2:*:*:*:*:*:*:*
- (no CPE)range: 6.2.x, 6.3.x < 6.3.6, 6.4.x < 6.4.2
Patches
Vulnerability mechanics
References
3- secunia.com/advisories/62602nvdThird Party Advisory
- www.arubanetworks.com/support/alerts/aid-11192014.txtnvdBroken LinkVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/98870nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.