Vulnerabilities fixed in Cisco Identity Services Engine

🗓️ 07 Nov 2024 08:55:49Reported by NCSCType

Cisco fixed vulnerabilities in the management interface enabling cross-site scripting with possible code execution or data exposure.

Reporter	Title	Published	Views	Family All 94
BDU FSTEC	The vulnerability in the web interface of the Cisco Identity Services Engine (ISE) management platform allows a perpetrator to gain read, modify, or delete access to data.	19 Nov 202400:00	–	bdu_fstec
BDU FSTEC	The vulnerability in the web interface of the Cisco Identity Services Engine (ISE) management platform allows a perpetrator to circumvent security restrictions and increase their privileges.	19 Nov 202400:00	–	bdu_fstec
BDU FSTEC	The vulnerability in the web interface of the Cisco Identity Services Engine (ISE) management platform allows a perpetrator to perform cross-site scripting attacks.	19 Nov 202400:00	–	bdu_fstec
BDU FSTEC	The vulnerability in the web interface of the Cisco Identity Services Engine (ISE) management platform allows a perpetrator to carry out cross-site scripting attacks.	3 Mar 202500:00	–	bdu_fstec
BDU FSTEC	The vulnerability in the application software interface of the Cisco Identity Services Engine (ISE) management platform allows a perpetrator to upload files and gain access to read, modify, or delete data.	3 Mar 202500:00	–	bdu_fstec
BDU FSTEC	The vulnerability in the web interface of the Cisco Identity Services Engine (ISE) management platform allows a perpetrator to execute cross-site scripting (XSS) attacks.	3 Mar 202500:00	–	bdu_fstec
BDU FSTEC	The vulnerability of the application software interface of the Cisco Identity Services Engine (ISE) management platform allows a perpetrator to gain read, modify, or delete access to data.	3 Mar 202500:00	–	bdu_fstec
Circl	CVE-2024-20525	6 Nov 202419:10	–	circl
Circl	CVE-2024-20527	6 Nov 202419:10	–	circl
Circl	CVE-2024-20529	6 Nov 202419:10	–	circl

Vulners

Node

cisco identity_services_engineMatch3.0

cisco identity_services_engineMatch3.1.0

cisco identity_services_engineMatch3.2.0

cisco identity_services_engineMatch3.3.0

cisco identity_services_engineMatch3.3

cisco identity_services_engineMatch3.4.0

Source	Link
sec	www.sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-auth-bypass-BBRf7mkE
sec	www.sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-multi-vuln-DBQdWRy

07 Nov 2024 08:55Current

7High risk

Vulners AI Score7

CVSS 3.16.5

EPSS0.0052

SSVC