What is the severity of CVE-2014-4013?

CVE-2014-4013 is classified as a critical SQL injection vulnerability that can lead to unauthorized access to database information.

How do I fix CVE-2014-4013?

To fix CVE-2014-4013, users should upgrade to Aruba Networks ClearPass version 6.3.4 or later.

Who is affected by CVE-2014-4013?

CVE-2014-4013 affects Aruba Networks ClearPass versions 5.x, 6.0.x, 6.1.x, 6.2.x, and all versions prior to 6.3.4.

Is CVE-2014-4013 being actively exploited?

While there's no public confirmation of active exploitation, SQL injection vulnerabilities like CVE-2014-4013 are commonly targeted and should be addressed promptly.

Vulnerability/
CVE-2014-4013

medium

4.9

CWE

14/7/2014

CVE-2014-4013: SQL Injection

First published: Mon Jul 14 2014(Updated: )

SQL injection vulnerability in the Policy Manager in Aruba Networks ClearPass 5.x, 6.0.x, 6.1.x through 6.1.4.61696, 6.2.x through 6.2.6.62196, and 6.3.x before 6.3.4 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Aruba Networks ClearPass	=5.0.1
Aruba Networks ClearPass	=5.1
Aruba Networks ClearPass	=5.2
Aruba Networks ClearPass	=6.0.1
Aruba Networks ClearPass	=6.0.2
Aruba Networks ClearPass	=6.1
Aruba Networks ClearPass	=6.1.4.61696
Aruba Networks ClearPass	=6.2
Aruba Networks ClearPass	=6.2.6.62196
Aruba Networks ClearPass	=6.3

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-4013?
CVE-2014-4013 is classified as a critical SQL injection vulnerability that can lead to unauthorized access to database information.
How do I fix CVE-2014-4013?
To fix CVE-2014-4013, users should upgrade to Aruba Networks ClearPass version 6.3.4 or later.
Who is affected by CVE-2014-4013?
CVE-2014-4013 affects Aruba Networks ClearPass versions 5.x, 6.0.x, 6.1.x, 6.2.x, and all versions prior to 6.3.4.
What kind of attack can be executed using CVE-2014-4013?
CVE-2014-4013 allows remote authenticated users to execute arbitrary SQL commands on the affected applications.
Is CVE-2014-4013 being actively exploited?
While there's no public confirmation of active exploitation, SQL injection vulnerabilities like CVE-2014-4013 are commonly targeted and should be addressed promptly.

agent/references
agent/weakness
agent/tags
agent/description
agent/event
agent/author
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
agent/type
collector/nvd-index
agent/software-canonical-lookup-request
agent/severity
vendor/arubanetworks
canonical/aruba networks clearpass
version/aruba networks clearpass/5.0.1
version/aruba networks clearpass/5.1
version/aruba networks clearpass/5.2
version/aruba networks clearpass/6.0.1
version/aruba networks clearpass/6.0.2
version/aruba networks clearpass/6.1
version/aruba networks clearpass/6.1.4.61696
version/aruba networks clearpass/6.2
version/aruba networks clearpass/6.2.6.62196
version/aruba networks clearpass/6.3

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Frequently Asked Questions

What is the severity of CVE-2014-4013?
CVE-2014-4013 is classified as a critical SQL injection vulnerability that can lead to unauthorized access to database information.
How do I fix CVE-2014-4013?
To fix CVE-2014-4013, users should upgrade to Aruba Networks ClearPass version 6.3.4 or later.
Who is affected by CVE-2014-4013?
CVE-2014-4013 affects Aruba Networks ClearPass versions 5.x, 6.0.x, 6.1.x, 6.2.x, and all versions prior to 6.3.4.
What kind of attack can be executed using CVE-2014-4013?
CVE-2014-4013 allows remote authenticated users to execute arbitrary SQL commands on the affected applications.
Is CVE-2014-4013 being actively exploited?
While there's no public confirmation of active exploitation, SQL injection vulnerabilities like CVE-2014-4013 are commonly targeted and should be addressed promptly.

CVE-2014-4013: SQL Injection

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-4013?

How do I fix CVE-2014-4013?

Who is affected by CVE-2014-4013?

What kind of attack can be executed using CVE-2014-4013?

Is CVE-2014-4013 being actively exploited?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2014-4013?

How do I fix CVE-2014-4013?

Who is affected by CVE-2014-4013?

What kind of attack can be executed using CVE-2014-4013?

Is CVE-2014-4013 being actively exploited?