The vulnerability of the Cisco Identity Services Engine, a platform for managing network policies, allows a hacker to deploy malicious elements on a page and force the user to activate them.

The vulnerability of the Cisco Identity Services Engine web interface interface is related to the lack of restrictions on the use of IFRAME elements. Exploiting this vulnerability allows a malicious actor to deploy malicious elements on the page and force users to activate them through a speciall...