2 matches found
CVE-2019-15255 Cisco Identity Services Engine Authorization Bypass Vulnerability
A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to bypass authorization and access sensitive information related to the device. The vulnerability exists because the software fails to sanitize URLs before it...
CVE-2019-15255
Cisco Identity Services Engine (ISE) web-based management interface suffers an authorization bypass due to insufficient URL input sanitization. Authenticated, remote attacker could craft a URL to bypass authentication and access sensitive device information. Affected product is Cisco ISE (notably...