📄 Cisco ISE API 3.2 Command Injection

Proof of concept exploit for a command injection vulnerability in Cisco ISE API version 3.2. ============================================================================================================================================= | Title : Cisco ISE API 3.2 command injection Exploits | |...

📄 Cisco ISE API 3.1 Command Injection

Proof of concept exploit for a command injection vulnerability in Cisco ISE API version 3.1. ============================================================================================================================================= | Title : Cisco ISE API 3.1 command injection Exploits | |...

EUVD-2021-17001

Malware in sbrugna...

EUVD-2016-1278

Malware in sbrugna...

EUVD-2020-21383

Malware in sbrugna...

EUVD-2018-19398

Malware in sbrugna...

EUVD-2019-10408

Malware in sbrugna...

EUVD-2022-26164

Malicious code in bioql PyPI...

EUVD-2022-26209

Malicious code in bioql PyPI...

ROS-20250812-05

A vulnerability in the framework that enables the development and deployment of RESTful services and RESTEasy applications is related to the insecure creation of temporary files. Exploitation of the vulnerability could allow an attacker to gain access to confidential information...

CVE-2021-30056

Knowage Suite before 7.4 is vulnerable to reflected cross-site scripting XSS. An attacker can inject arbitrary web script in /restful-services/publish via the 'EXECFROM' parameter that can lead to data leakage...

CVE-2020-29001

An issue was discovered on Geeni GNC-CW028 Camera 2.7.2, Geeni GNC-CW025 Doorbell 2.9.5, Merkury MI-CW024 Doorbell 2.9.6, and Merkury MI-CW017 Camera 2.9.6 devices. A vulnerability exists in the RESTful Services API that allows a remote attacker to take full control of the camera with a...

The vulnerability of the External RESTful Services interface of the Cisco Identity Services Engine (ISE) management platform allows a perpetrator to execute cross-site scripting attacks.

The vulnerability of the External RESTful Services interface of the Cisco Identity Services Engine ISE management platform for network policies relates to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site...

Important: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.2 for OpenShift image security and enhancement update

A new image is available for Red Hat Single Sign-On 7.6.2, running on Red Hat OpenShift Container Platform from the release of 3.11 up to the release of 4.12.0. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base...

CVE-2022-20959

A vulnerability in the External RESTful Services ERS API of Cisco Identity Services Engine ISE Software could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface of an affected device. This vulnerability is due to insufficient input...

CVE-2022-20959

A vulnerability in the External RESTful Services ERS API of Cisco Identity Services Engine ISE Software could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface of an affected device. This vulnerability is due to insufficient input...

PT-2022-6635 · Cisco · Cisco Identity Services Engine (Ise)

Name of the Vulnerable Software and Affected Versions: Cisco Identity Services Engine ISE Software affected versions not specified Description: The issue is related to insufficient input validation in the External RESTful Services ERS API, which could allow an authenticated, remote attacker to...

CVE-2022-20914

A vulnerability in the External RESTful Services ERS API of Cisco Identity Services Engine ISE Software could allow an authenticated, remote attacker to obtain sensitive information. This vulnerability is due to excessive verbosity in a specific REST API output. An attacker could exploit this...

The vulnerability of the RESTful Services Programmable Interface (ERS) implementation of the Cisco Identity Services Engine platform allows a perpetrator to disclose protected information.

The vulnerability of the RESTful Services Programmable Interface ERS implementation of the Cisco Identity Services Engine platform is related to deficiencies in password masking during user login. Exploiting this vulnerability could allow a malicious actor to disclose sensitive information...

PT-2022-3983 · Cisco · Cisco Identity Services Engine (Ise)

Name of the Vulnerable Software and Affected Versions: Cisco Identity Services Engine ISE Software affected versions not specified Description: A vulnerability in the External RESTful Services ERS API could allow an authenticated, remote attacker to obtain sensitive information due to excessive...