Cisco Identity Services Engine (ISE) is an environment-aware platform (ISE Identity Services Engine) from Cisco. The platform collects real-time information from the network, users and devices, and develops and enforces policies to regulate the network. The Cisco Identity Services Engine suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the web-based management interface, which can be exploited by an attacker to execute arbitrary web script or HTML by injecting a carefully crafted payload.
CPE | Name | Operator | Version |
---|---|---|---|
cisco cisco identity services engine | eq | 3.0 | |
cisco cisco identity services engine | eq | 3.1 |