Input validation

2023-11-0117:15:00

PRIOn knowledge base

www.prio-n.com

cisco ise

file upload

remote attacker

authenticated

arbitrary files

web interface

crafted file

malicious files

additional attacks

root privileges

nvd

7.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

28.6%

JSON

Two vulnerabilities in Cisco ISE could allow an authenticated, remote attacker to upload arbitrary files to an affected device. To exploit these vulnerabilities, an attacker must have valid Administrator credentials on the affected device. These vulnerabilities are due to improper validation of files that are uploaded to the web-based management interface. An attacker could exploit these vulnerabilities by uploading a crafted file to an affected device. A successful exploit could allow the attacker to store malicious files in specific directories on the device. The attacker could later use those files to conduct additional attacks, including executing arbitrary code on the affected device with root privileges.

CPENameOperatorVersion
identity_services_engineeq2.7.0 patch2
identity_services_engineeq3.0.0
identity_services_engineeq3.0.0 patch1
identity_services_engineeq2.7.0
identity_services_engineeq3.1
identity_services_engineeq3.0.0 patch2
identity_services_engineeq2.7.0 patch1
identity_services_engineeq3.0.0 patch3
identity_services_engineeq2.7.0 patch3
identity_services_engineeq2.7.0 patch4

Name	Operator	Version
identity_services_engine	eq	2.7.0 patch2
identity_services_engine	eq	3.0.0
identity_services_engine	eq	3.0.0 patch1
identity_services_engine	eq	2.7.0
identity_services_engine	eq	3.1
identity_services_engine	eq	3.0.0 patch2
identity_services_engine	eq	2.7.0 patch1
identity_services_engine	eq	3.0.0 patch3
identity_services_engine	eq	2.7.0 patch3
identity_services_engine	eq	2.7.0 patch4