2 matches found
Vulnerabilities fixed in Cisco Identity Services Engine
Vulnerabilities have been fixed in Cisco Identity Services Engine. The vulnerabilities allow a malicious party to access system data or to bypass authentication. Cisco has released updates to fix the vulnerabilities. More information can be found on the pages below: CVE-2022-20733...
CVE-2022-20733
Cisco Identity Services Engine (ISE) is affected by CVE-2022-20733, a vulnerability in the login page caused by exposed SAML metadata that can allow an unauthenticated remote attacker to bypass authentication and gain unrestricted access to all roles. The issue is tied to a SAML metadata exposure...