Lucene search

K
CiscoIdentity Services Engine

5 matches found

CVE
CVE
added 2022/11/04 6:15 p.m.96 views

CVE-2022-20956

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to bypass authorization and access system files. This vulnerability is due to improper access control in the web-based management interface of an affected devi...

8.8CVSS8.5AI score0.00017EPSS
CVE
CVE
added 2022/11/04 6:15 p.m.72 views

CVE-2022-20937

A vulnerability in a feature that monitors RADIUS requests on Cisco Identity Services Engine (ISE) Software could allow an unauthenticated, remote attacker to negatively affect the performance of an affected device. This vulnerability is due to insufficient management of system resources. An attack...

5.3CVSS5.3AI score0.00166EPSS
CVE
CVE
added 2022/11/04 6:15 p.m.68 views

CVE-2022-20961

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. This vulnerability is due to insufficient CSRF pro...

8.8CVSS8.8AI score0.00463EPSS
CVE
CVE
added 2022/11/04 6:15 p.m.58 views

CVE-2022-20962

A vulnerability in the Localdisk Management feature of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to make unauthorized changes to the file system of an affected device. This vulnerability is due to insufficient input validation. An attacker could exploit this...

8.8CVSS8.7AI score0.00043EPSS
CVE
CVE
added 2022/11/04 6:15 p.m.56 views

CVE-2022-20963

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. This vulnerability is due to insuffi...

5.4CVSS5.2AI score0.00048EPSS