4 matches found
CVE-2019-15282
A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE Software could allow an unauthenticated, remote attacker read tcpdump files generated on an affected device. The vulnerability is due an issue in the authentication logic of the web-based management...
Cross site scripting
A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE Software could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the web-based management interface of an affected device. The attacker must have...
Cross site scripting
A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of an affected device. The vulnerability exists...
CVE-2019-1719
CVE-2019-1719 concerns a cross-site scripting vulnerability in the Cisco Identity Services Engine (ISE) web-based guest portal. The issue arises from insufficient validation of user-supplied input in the web interface, allowing an authenticated, remote attacker to lure a user into clicking a craf...