Cisco

Identity Services Engine

140 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.7

CVE-2023-20121

  • EPSS 0.07%
  • Published 05.04.2023 19:15:08
  • Last modified 21.11.2024 07:40:36

Multiple vulnerabilities in the restricted shell of Cisco Evolved Programmable Network Manager (EPNM), Cisco Identity Services Engine (ISE), and Cisco Prime Infrastructure could allow an authenticated, local attacker to escape the restricted shell an...

7.8

CVE-2023-20122

  • EPSS 0.06%
  • Published 05.04.2023 19:15:08
  • Last modified 21.11.2024 07:40:36

Multiple vulnerabilities in the restricted shell of Cisco Evolved Programmable Network Manager (EPNM), Cisco Identity Services Engine (ISE), and Cisco Prime Infrastructure could allow an authenticated, local attacker to escape the restricted shell an...

6.7

CVE-2023-20152

  • EPSS 0.06%
  • Published 05.04.2023 18:15:08
  • Last modified 21.11.2024 07:40:40

Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could allow an authenticated, local attacker to perform command injection attacks on the underlying operating system and elevate privileges to root. To exploit the...

6.7

CVE-2023-20022

  • EPSS 0.06%
  • Published 05.04.2023 16:15:07
  • Last modified 21.11.2024 07:40:22

Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could allow an authenticated, local attacker to perform command injection attacks on the underlying operating system and elevate privileges to root. To exploit the...

6.7

CVE-2023-20023

  • EPSS 0.06%
  • Published 05.04.2023 16:15:07
  • Last modified 21.11.2024 07:40:22

Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could allow an authenticated, local attacker to perform command injection attacks on the underlying operating system and elevate privileges to root. To exploit the...

6

CVE-2023-20030

  • EPSS 0.19%
  • Published 05.04.2023 16:15:07
  • Last modified 21.11.2024 07:40:23

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to access sensitive information, conduct a server-side request forgery (SSRF) attack through an affected devic...

6.7

CVE-2023-20021

  • EPSS 0.06%
  • Published 05.04.2023 15:15:06
  • Last modified 21.11.2024 07:40:22

Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could allow an authenticated, local attacker to perform command injection attacks on the underlying operating system and elevate privileges to root. To exploit the...

6.1

CVE-2023-20085

  • EPSS 0.13%
  • Published 01.03.2023 08:15:12
  • Last modified 21.11.2024 07:40:31

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an af...

5.4

CVE-2022-20965

  • EPSS 0.02%
  • Published 20.01.2023 07:15:11
  • Last modified 21.11.2024 06:43:55

A vulnerability in the web-based management interface of Cisco Identity Services Engine could allow an authenticated, remote attacker to take privileges actions within the web-based management interface. This vulnerability is due to improper acces...

5.4

CVE-2022-20966

  • EPSS 4.68%
  • Published 20.01.2023 07:15:11
  • Last modified 21.11.2024 06:43:56

A vulnerability in the web-based management interface of Cisco Identity Services Engine could allow an authenticated, remote attacker to conduct cross-site scripting attacks against other users of the application web-based management interface. Th...