The vulnerability in the web interface of the Cisco Identity Services Engine administrative interface allows a perpetrator to execute a cross-site scripting attack.

🗓️ 30 Jul 2019 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 2 Views

Cisco Identity Services Engine web interface vulnerability enables remote cross-site scripting due to insufficient page structure protections.

Reporter	Title	Published	Views	Family All 10
Cisco	Cisco Identity Services Engine Cross-Site Scripting Vulnerability	17 Jul 201916:00	–	cisco
Tenable Nessus	Cisco Identity Services Engine Cross-Site Scripting Vulnerability	5 Aug 201900:00	–	nessus
CNVD	Cisco Identity Services Engine Cross-Site Scripting Vulnerability (CNVD-2019-23288)	19 Jul 201900:00	–	cnvd
CVE	CVE-2019-1941	17 Jul 201920:25	–	cve
Cvelist	CVE-2019-1941 Cisco Identity Services Engine Cross-Site Scripting Vulnerability	17 Jul 201920:25	–	cvelist
EUVD	EUVD-2019-10498	7 Oct 202500:30	–	euvd
NVD	CVE-2019-1941	17 Jul 201921:15	–	nvd
OSV	CVE-2019-1941	17 Jul 201921:15	–	osv
Prion	Cross site scripting	17 Jul 201921:15	–	prion
Vulnrichment	CVE-2019-1941 Cisco Identity Services Engine Cross-Site Scripting Vulnerability	17 Jul 201920:25	–	vulnrichment

Source	Link
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190717-ise-xss
securityfocus	www.securityfocus.com/bid/109297
nvd	www.nvd.nist.gov/vuln/detail/CVE-2019-1941
web	www.web.nvd.nist.gov/view/vuln/detail

23 Mar 2021 00:00Current

5.1Medium risk

Vulners AI Score5.1

CVSS 36.1

CVSS 26.4

EPSS0.00247

Cisco Identity Services Engine Cross Site Scripting Web interface Network policies