Lucene search
K

4 matches found

NVD
NVD
added 2022/10/26 3:15 p.m.31 views

CVE-2022-20959

A vulnerability in the External RESTful Services ERS API of Cisco Identity Services Engine ISE Software could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface of an affected device. This vulnerability is due to insufficient input...

6.1CVSS0.00781EPSS
Exploits0References2
CVE
CVE
added 2022/10/26 2:1 p.m.94 views

CVE-2022-20959

CVE-2022-20959 affects Cisco Identity Services Engine (ISE) via the External RESTful Services (ERS) API. The issue arises from insufficient input validation, allowing an authenticated, remote attacker to trick an administrator into clicking a malicious link, leading to cross-site scripting (XSS) ...

6.1CVSS5.9AI score0.00781EPSS
Exploits0References2Affected Software1
Malwarebytes
Malwarebytes
added 2022/10/24 8:0 p.m.183 views

Cisco warns of ISE vulnerability with no fixed release or workaround

Cisco has published a security advisory for a vulnerability in the web-based management interface of Cisco Identity Services Engine ISE that could allow an authenticated, remote attacker to read and delete files on an affected device. The bug, with a CVSS score of 7.1 has no patch and no...

8.2AI score0.0124EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2022/10/19 11:0 p.m.5 views

CVE-2022-20959

A vulnerability in the External RESTful Services ERS API of Cisco Identity Services Engine ISE Software could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface of an affected device. This vulnerability is due to insufficient input...

6.1CVSS7AI score0.00781EPSS
Exploits0References3
Rows per page
Query Builder