Lucene search
China National Vulnerability DatabaseCNVD-2023-40192HistoryMay 20, 2023 - 12:00 a.m.
Cisco Identity Services Engine Input Validation Error Vulnerability
2023-05-2000:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
cisco
identity services engine
input validation
vulnerability
download
file system
exploit
0.001 Low
EPSS
Percentile
38.7%
Cisco Identity Services Engine (ISE) is an environment-aware platform (ISE Identity Services Engine) from Cisco. The platform collects real-time information from the network, users and devices, and develops and enforces policies to regulate the network. An input validation error vulnerability exists in Cisco Identity Services Engine, which can be exploited by an attacker to download arbitrary files from the file system of an affected device.
| CPE | Name | Operator | Version |
|---|---|---|---|
| cisco identity services engine | eq | 3.2 |
Related
prion
prion
Input validation
2023-05-18 03:15:00
nessus
nessus
cvelist
cvelist
nvd
nvd
CVE-2023-20087
2023-05-18 03:15:09
cve
cve
CVE-2023-20087
2023-05-18 03:15:09
cisco
cisco
Cisco Identity Services Engine Arbitrary File Download Vulnerabilities
2023-05-17 16:00:00