Lucene search
China National Vulnerability DatabaseCNVD-2023-40185HistoryMay 20, 2023 - 12:00 a.m.
Cisco Identity Services Engine Command Injection Vulnerability (CNVD-2023-40185)
2023-05-2000:00:00
China National Vulnerability Database
www.cnvd.org.cn
3
cisco identity services engine
command injection
vulnerability
network security
privilege escalation
operating system
0.001 Low
EPSS
Percentile
34.1%
Cisco Identity Services Engine (ISE) is an environment-aware platform (ISE Identity Services Engine) from Cisco. The platform collects real-time information from the network, users and devices, and develops and enforces policies to regulate the network. The Cisco Identity Services Engine suffers from a command injection vulnerability that can be exploited by an attacker to perform a command injection attack on the underlying operating system and elevate privileges to root.
| CPE | Name | Operator | Version |
|---|---|---|---|
| cisco identity services engine | eq | 3.2 |
Related
prion
prion
Command injection
2023-05-18 03:15:00
nessus
nessus
cve
cve
CVE-2023-20164
2023-05-18 03:15:10
nvd
nvd
CVE-2023-20164
2023-05-18 03:15:10
cvelist
cvelist
cisco
cisco
Cisco Identity Services Engine Command Injection Vulnerabilities
2023-05-17 16:00:00