2 matches found
Cisco Identity Services Engine Command Injection (CVE-2023-20175)
According to its self-reported version, Cisco Identity Services Engine is affected by a command injection vulnerability. A vulnerability in a specific Cisco ISE CLI command could allow an authenticated, local attacker to perform command injection attacks on the underlying operating system and...
CVE-2023-20175
CVE-2023-20175 applies to Cisco Identity Services Engine (ISE). Affected: ISE CLI command allows an authenticated, local attacker with at least Read-only privileges to submit crafted CLI input, triggering command injection and potential root privilege escalation on the underlying OS. Root cause: ...