36 matches found
EUVD-2024-18243
Malicious code in bioql PyPI...
EUVD-2024-18246
Malicious code in bioql PyPI...
EUVD-2024-18253
Malicious code in bioql PyPI...
EUVD-2024-18254
Malicious code in bioql PyPI...
EUVD-2024-18252
Malicious code in bioql PyPI...
EUVD-2025-23860
Malicious code in bioql PyPI...
EUVD-2025-19166
Malicious code in bioql PyPI...
EUVD-2025-23859
Malicious code in bioql PyPI...
EUVD-2023-24387
Malicious code in bioql PyPI...
EUVD-2024-18158
Malicious code in bioql PyPI...
EUVD-2024-18242
Malicious code in bioql PyPI...
CVE-2025-20332
A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated, remote attacker to modify parts of the configuration on an affected device. This vulnerability is due to the lack of server-side validation of Administrator permissions. An attacker could exploit this...
CVE-2025-20331
A vulnerability in the web-based management interface of Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to conduct a stored XSS attack against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-based managemen...
PT-2025-32191 · Cisco · Cisco Ise
Name of the Vulnerable Software and Affected Versions: Cisco ISE affected versions not specified Description: A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated, remote attacker to modify parts of the configuration on an affected device. This issue is...
Cisco Warns of Critical ISE Flaw Allowing Unauthenticated Attackers to Execute Root Code
Cisco has disclosed a new maximum-severity security vulnerability impacting Identity Services Engine ISE and Cisco ISE Passive Identity Connector ISE-PIC that could permit an attacker to execute arbitrary code on the underlying operating system with elevated privileges. Tracked as CVE-2025-20337,...
CVE-2025-20284
A vulnerability in a specific API of Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to execute arbitrary code on the underlying operating system as root. This vulnerability is due to insufficient validation of user-supplied input. An attacker with valid credentials coul...
PT-2025-29854 · Cisco · Cisco Ise +1
Name of the Vulnerable Software and Affected Versions: Cisco ISE affected versions not specified Cisco ISE-PIC affected versions not specified Description: A vulnerability exists in a specific API of Cisco ISE and Cisco ISE-PIC that could allow an authenticated, remote attacker to execute arbitra...
PT-2025-29855 · Cisco · Cisco Ise +1
Name of the Vulnerable Software and Affected Versions: Cisco ISE affected versions not specified Cisco ISE-PIC affected versions not specified Description: A vulnerability in a specific API of Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to execute arbitrary code on t...
PT-2025-29856 · Cisco · Cisco Ise +1
Name of the Vulnerable Software and Affected Versions: Cisco ISE affected versions not specified Cisco ISE-PIC affected versions not specified Description: A flaw exists in the IP Access Restriction feature that may allow an authenticated, remote attacker to bypass configured IP access restrictio...
CVE-2025-20282
A vulnerability in an internal API of Cisco ISE and Cisco ISE-PIC could allow an unauthenticated, remote attacker to upload arbitrary files to an affected device and then execute those files on the underlying operating system as root. This vulnerability is due a lack of file validation checks tha...