10 matches found
📄 Cisco ISE API 3.2 Command Injection
Proof of concept exploit for a command injection vulnerability in Cisco ISE API version 3.2. ============================================================================================================================================= | Title : Cisco ISE API 3.2 command injection Exploits | |...
📄 Cisco ISE API 3.1 Command Injection
Proof of concept exploit for a command injection vulnerability in Cisco ISE API version 3.1. ============================================================================================================================================= | Title : Cisco ISE API 3.1 command injection Exploits | |...
EUVD-2019-10408
Malware in sbrugna...
EUVD-2022-26209
Malicious code in bioql PyPI...
The vulnerability of the External RESTful Services interface of the Cisco Identity Services Engine (ISE) management platform allows a perpetrator to execute cross-site scripting attacks.
The vulnerability of the External RESTful Services interface of the Cisco Identity Services Engine ISE management platform for network policies relates to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site...
CVE-2022-20959
A vulnerability in the External RESTful Services ERS API of Cisco Identity Services Engine ISE Software could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface of an affected device. This vulnerability is due to insufficient input...
CVE-2022-20959
A vulnerability in the External RESTful Services ERS API of Cisco Identity Services Engine ISE Software could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface of an affected device. This vulnerability is due to insufficient input...
PT-2022-6635 · Cisco · Cisco Identity Services Engine (Ise)
Name of the Vulnerable Software and Affected Versions: Cisco Identity Services Engine ISE Software affected versions not specified Description: The issue is related to insufficient input validation in the External RESTful Services ERS API, which could allow an authenticated, remote attacker to...
PT-2022-3983 · Cisco · Cisco Identity Services Engine (Ise)
Name of the Vulnerable Software and Affected Versions: Cisco Identity Services Engine ISE Software affected versions not specified Description: A vulnerability in the External RESTful Services ERS API could allow an authenticated, remote attacker to obtain sensitive information due to excessive...
CVE-2019-1851
A vulnerability in the External RESTful Services ERS API of the Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to generate arbitrary certificates signed by the Internal Certificate Authority CA Services on ISE. This vulnerability is due to an incorrect...