Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
CiscoIdentity Services Engine

157 matches found

CVE
CVEadded 2013/10/16 10:52 a.m.33 views

CVE-2013-5540

The file-upload feature in Cisco Identity Services Engine (ISE) allows remote authenticated users to cause a denial of service (disk consumption and administration-interface outage) by uploading many files, aka Bug ID CSCui67519.

6.8CVSS6.4AI score0.00363EPSS
CVE
CVEadded 2021/10/06 8:15 p.m.32 views

CVE-2021-34702

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to obtain sensitive information. This vulnerability is due to improper enforcement of administrator privilege levels for low-value sensitive data. An attacker ...

4.3CVSS4.5AI score0.00163EPSS
CVE
CVEadded 2023/05/18 3:15 a.m.32 views

CVE-2023-20174

Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to read arbitrary files or conduct a server-side request forgery (SSRF) attack through an affected device. To exploit these vulnerabilities, an attack...

4.9CVSS5.2AI score0.00067EPSS
CVE
CVEadded 2025/07/16 5:15 p.m.9 views

CVE-2025-20283

A vulnerability in a specific API of Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to execute arbitrary code on the underlying operating system as root. This vulnerability is due to insufficient validation of user-supplied input. An attacker with valid credentials could ...

7.2CVSS7.5AI score0.00089EPSS
CVE
CVEadded 2025/06/25 4:15 p.m.8 views

CVE-2025-20264

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to bypass the authorization mechanisms for specific administrative functions. This vulnerability is due to insufficient authorization enforcement mechanisms fo...

6.4CVSS7.2AI score0.00065EPSS
CVE
CVEadded 2025/07/16 5:15 p.m.7 views

CVE-2025-20284

A vulnerability in a specific API of Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to execute arbitrary code on the underlying operating system as root. This vulnerability is due to insufficient validation of user-supplied input. An attacker with valid credentials could ...

7.2CVSS7.5AI score0.00089EPSS
CVE
CVEadded 2025/07/16 5:15 p.m.7 views

CVE-2025-20285

A vulnerability in the IP Access Restriction feature of Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to bypass configured IP access restrictions and log in to the device from a disallowed IP address. This vulnerability is due to improper enforcement of access controls t...

4.1CVSS6.9AI score0.00034EPSS
Total number of security vulnerabilities157