Design/Logic Flaw

2023-11-2119:15:00

PRIOn knowledge base

www.prio-n.com

cisco

ise

web interface

vulnerability

authenticated

remote

xss

attack

6.2 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

18.0%

JSON

A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated, remote attacker to conduct an XSS attack against a user of the web-based management interface of an affected device.

CPENameOperatorVersion
identity_services_engineeq3.0.0
identity_services_engineeq3.0.0 patch1
identity_services_engineeq3.1
identity_services_engineeq3.0.0 patch2
identity_services_engineeq3.0.0 patch3
identity_services_engineeq3.0.0 patch4
identity_services_engineeq3.1 patch1
identity_services_engineeq3.0.0 patch5
identity_services_engineeq3.1 patch2
identity_services_engineeq3.0.0 patch6

Name	Operator	Version
identity_services_engine	eq	3.0.0
identity_services_engine	eq	3.0.0 patch1
identity_services_engine	eq	3.1
identity_services_engine	eq	3.0.0 patch2
identity_services_engine	eq	3.0.0 patch3
identity_services_engine	eq	3.0.0 patch4
identity_services_engine	eq	3.1 patch1
identity_services_engine	eq	3.0.0 patch5
identity_services_engine	eq	3.1 patch2
identity_services_engine	eq	3.0.0 patch6