Cisco

Identity Services Engine

140 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.7

CVE-2023-20121

  • EPSS 0.07%
  • Veröffentlicht 05.04.2023 19:15:08
  • Zuletzt bearbeitet 21.11.2024 07:40:36

Multiple vulnerabilities in the restricted shell of Cisco Evolved Programmable Network Manager (EPNM), Cisco Identity Services Engine (ISE), and Cisco Prime Infrastructure could allow an authenticated, local attacker to escape the restricted shell an...

7.8

CVE-2023-20122

  • EPSS 0.06%
  • Veröffentlicht 05.04.2023 19:15:08
  • Zuletzt bearbeitet 21.11.2024 07:40:36

Multiple vulnerabilities in the restricted shell of Cisco Evolved Programmable Network Manager (EPNM), Cisco Identity Services Engine (ISE), and Cisco Prime Infrastructure could allow an authenticated, local attacker to escape the restricted shell an...

6.7

CVE-2023-20152

  • EPSS 0.06%
  • Veröffentlicht 05.04.2023 18:15:08
  • Zuletzt bearbeitet 21.11.2024 07:40:40

Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could allow an authenticated, local attacker to perform command injection attacks on the underlying operating system and elevate privileges to root. To exploit the...

6.7

CVE-2023-20022

  • EPSS 0.06%
  • Veröffentlicht 05.04.2023 16:15:07
  • Zuletzt bearbeitet 21.11.2024 07:40:22

Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could allow an authenticated, local attacker to perform command injection attacks on the underlying operating system and elevate privileges to root. To exploit the...

6.7

CVE-2023-20023

  • EPSS 0.06%
  • Veröffentlicht 05.04.2023 16:15:07
  • Zuletzt bearbeitet 21.11.2024 07:40:22

Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could allow an authenticated, local attacker to perform command injection attacks on the underlying operating system and elevate privileges to root. To exploit the...

6

CVE-2023-20030

  • EPSS 0.19%
  • Veröffentlicht 05.04.2023 16:15:07
  • Zuletzt bearbeitet 21.11.2024 07:40:23

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to access sensitive information, conduct a server-side request forgery (SSRF) attack through an affected devic...

6.7

CVE-2023-20021

  • EPSS 0.06%
  • Veröffentlicht 05.04.2023 15:15:06
  • Zuletzt bearbeitet 21.11.2024 07:40:22

Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could allow an authenticated, local attacker to perform command injection attacks on the underlying operating system and elevate privileges to root. To exploit the...

6.1

CVE-2023-20085

  • EPSS 0.13%
  • Veröffentlicht 01.03.2023 08:15:12
  • Zuletzt bearbeitet 21.11.2024 07:40:31

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an af...

5.4

CVE-2022-20965

  • EPSS 0.02%
  • Veröffentlicht 20.01.2023 07:15:11
  • Zuletzt bearbeitet 21.11.2024 06:43:55

A vulnerability in the web-based management interface of Cisco Identity Services Engine could allow an authenticated, remote attacker to take privileges actions within the web-based management interface. This vulnerability is due to improper acces...

5.4

CVE-2022-20966

  • EPSS 4.68%
  • Veröffentlicht 20.01.2023 07:15:11
  • Zuletzt bearbeitet 21.11.2024 06:43:56

A vulnerability in the web-based management interface of Cisco Identity Services Engine could allow an authenticated, remote attacker to conduct cross-site scripting attacks against other users of the application web-based management interface. Th...