CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

Positive Technologies•added 2026/05/06 12:0 a.m.•10 views

PT-2026-37657

Name of the Vulnerable Software and Affected Versions Cisco ISE affected versions not specified Description Improper role-based access control RBAC permissions on the RADIUS Policy API endpoints allow an authenticated remote attacker with read-only Administrator privileges to gain unauthorized re...

4.3CVSS5.9AI score0.0003EPSS

Exploits0References5

Cvelist•added 2025/11/05 4:32 p.m.•3 views

CVE-2025-20305

A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated, remote attacker to obtain sensitive information from an affected device. This vulnerability exists because certain files lack proper data protection mechanisms. An attacker with read-only Administrato...

4.3CVSS0.00047EPSS

Exploits0References1

Vulnrichment•added 2025/11/05 4:32 p.m.•2 views

CVE-2025-20305

4.3CVSS6AI score0.00047EPSS

Exploits0References1

CNNVD•added 2024/05/14 12:0 a.m.•1 views

Fortinet FortiADC 安全漏洞

Fortinet FortiADC is an application delivery controller from Fortinet, Inc. A security vulnerability exists in the Fortinet FortiADC that stems from the exposure of sensitive system information to unauthorized control domains, potentially allowing read-only administrators to view data related to...

5.5CVSS6.4AI score0.00143EPSS

Exploits0References3

ATTACKERKB•added 2022/04/06 11:0 p.m.•3 views

CVE-2022-20782

A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to obtain sensitive information from an affected device. This vulnerability is due to improper enforcement of administrative privilege levels for high-value...

6.5CVSS6.6AI score0.00172EPSS

Exploits0References2

ATTACKERKB•added 2022/02/02 4:0 p.m.•5 views

CVE-2022-20680

A vulnerability in the web-based management interface of Cisco Prime Service Catalog could allow an authenticated, remote attacker to access sensitive information on an affected device. This vulnerability is due to improper enforcement of Administrator privilege levels for low-value sensitive dat...

6.5CVSS6.6AI score0.0032EPSS

Exploits0References2

Positive Technologies•added 2022/02/02 12:0 a.m.•2 views

PT-2022-2312 · Cisco · Cisco Prime Service Catalog

Name of the Vulnerable Software and Affected Versions: Cisco Prime Service Catalog affected versions not specified Description: A vulnerability in the web-based management interface could allow an authenticated, remote attacker to access sensitive information on an affected device. This issue is...

6.5CVSS6.3AI score0.0032EPSS

Exploits0References5

Positive Technologies•added 2021/10/06 12:0 a.m.•1 views

PT-2021-7504 · Cisco · Cisco Identity Services Engine

Name of the Vulnerable Software and Affected Versions: Cisco Identity Services Engine ISE affected versions not specified Description: A vulnerability in the web-based management interface could allow an authenticated, remote attacker to obtain sensitive information due to improper enforcement of...

4.3CVSS4.4AI score0.00163EPSS

Exploits0References5