Lucene search
China National Vulnerability DatabaseCNVD-2024-06170HistoryJan 16, 2024 - 12:00 a.m.
Cisco Identity Services Engine Cross-Site Scripting Vulnerability (CNVD-2024-06170)
2024-01-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
cisco
identity services engine
environment-aware platform
real-time information
network security
user authentication
cross-site scripting
Cisco Identity Services Engine (ISE) is an environment-aware platform (ISE Identity Services Engine) from Cisco. The platform collects real-time information from the network, users and devices, and develops and enforces policies to regulate the network. A cross-site scripting vulnerability exists in the Cisco Identity Services Engine, which stems from the lack of effective filtering and escaping of user-supplied data by the application, and can be exploited by a remote, authenticated attacker to perform a stored cross-site scripting (XSS) attack against an interface user on an affected device.
Related
prion
prion
Cross site scripting
2024-01-17 17:15:00
cisco
cisco
Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability
2024-01-10 16:00:00
cvelist
cvelist
CVE-2024-20251
2024-01-17 16:55:07
nessus
nessus
Cisco Identity Services Engine Stored XSS (cisco-sa-ISE-XSS-bL4VTML)
2024-01-12 00:00:00
cve
cve
CVE-2024-20251
2024-01-17 17:15:11
nvd
nvd
CVE-2024-20251
2024-01-17 17:15:11