Identity Services Engine@2.6.0 Security Vulnerabilities and Issues — Identity Services Engine@2.6.0 CVE List

Lucene search

CiscoIdentity Services Engine2.6.0

4 matches found

CVE•added 2022/08/10 9:15 a.m.•747 views

CVE-2022-20914

A vulnerability in the External RESTful Services (ERS) API of Cisco Identity Services Engine (ISE) Software could allow an authenticated, remote attacker to obtain sensitive information. This vulnerability is due to excessive verbosity in a specific REST API output. An attacker could exploit this v...

4.9CVSS5.2AI score0.00104EPSS

CVE•added 2022/04/06 7:15 p.m.•153 views

CVE-2022-20756

A vulnerability in the RADIUS feature of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to cause the affected system to stop processing RADIUS packets. This vulnerability is due to improper handling of certain RADIUS requests. An attacker could exploit this vul...

8.6CVSS7.8AI score0.01128EPSS

CVE•added 2022/04/06 7:15 p.m.•131 views

CVE-2022-20782

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to obtain sensitive information from an affected device. This vulnerability is due to improper enforcement of administrative privilege levels for high-value se...

6.5CVSS6.3AI score0.00172EPSS

CVE•added 2022/11/04 6:15 p.m.•68 views

CVE-2022-20961

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. This vulnerability is due to insufficient CSRF pro...

8.8CVSS8.8AI score0.00463EPSS