Cisco

Identity Services Engine

140 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2020-3551

  • EPSS 0.35%
  • Veröffentlicht 06.11.2020 19:15:14
  • Zuletzt bearbeitet 21.11.2024 05:31:17

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface of an affected device. The vu...

4.8

CVE-2020-26083

  • EPSS 0.17%
  • Veröffentlicht 06.11.2020 19:15:13
  • Zuletzt bearbeitet 21.11.2024 05:19:12

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker with administrative credentials to conduct a cross-site scripting (XSS) attack against a user of the interface...

7.2

CVE-2020-27122

  • EPSS 0.05%
  • Veröffentlicht 06.11.2020 19:15:13
  • Zuletzt bearbeitet 21.11.2024 05:20:45

A vulnerability in the Microsoft Active Directory integration of Cisco Identity Services Engine (ISE) could allow an authenticated, local attacker to elevate privileges on an affected device. To exploit this vulnerability, an attacker would need to h...

4.8

CVE-2020-3589

  • EPSS 0.2%
  • Veröffentlicht 08.10.2020 05:15:15
  • Zuletzt bearbeitet 21.11.2024 05:31:22

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) Software could allow an authenticated, remote attacker with administrative credentials to conduct a cross-site scripting (XSS) attack against a user of the ...

7.7

CVE-2020-3467

  • EPSS 0.13%
  • Veröffentlicht 08.10.2020 05:15:14
  • Zuletzt bearbeitet 21.11.2024 05:31:07

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to modify parts of the configuration on an affected device. The vulnerability is due to improper enforcement o...

6.9

CVE-2019-1736

  • EPSS 0.03%
  • Veröffentlicht 23.09.2020 01:15:14
  • Zuletzt bearbeitet 21.11.2024 04:37:12

A vulnerability in the firmware of the Cisco UCS C-Series Rack Servers could allow an authenticated, physical attacker to bypass Unified Extensible Firmware Interface (UEFI) Secure Boot validation checks and load a compromised software image on an af...

4.8

CVE-2020-3340

  • EPSS 0.17%
  • Veröffentlicht 02.07.2020 05:15:11
  • Zuletzt bearbeitet 21.11.2024 05:30:50

Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker with administrative credentials to conduct a cross-site scripting (XSS) attack against a user of the ...

5.9

CVE-2020-3353

  • EPSS 0.38%
  • Veröffentlicht 03.06.2020 19:15:11
  • Zuletzt bearbeitet 21.11.2024 05:30:51

A vulnerability in the syslog processing engine of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a race condition t...

5.4

CVE-2020-3157

  • EPSS 0.22%
  • Veröffentlicht 04.03.2020 19:15:12
  • Zuletzt bearbeitet 21.11.2024 05:30:26

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based interface. The vulnerability is...

6.1

CVE-2020-3156

  • EPSS 0.21%
  • Veröffentlicht 19.02.2020 20:15:15
  • Zuletzt bearbeitet 21.11.2024 05:30:26

A vulnerability in the logging component of Cisco Identity Services Engine could allow an unauthenticated remote attacker to conduct cross-site scripting attacks. The vulnerability is due to the improper validation of endpoint data stored in logs use...