Cisco

Identity Services Engine

140 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2020-3551

  • EPSS 0.35%
  • Published 06.11.2020 19:15:14
  • Last modified 21.11.2024 05:31:17

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface of an affected device. The vu...

4.8

CVE-2020-26083

  • EPSS 0.17%
  • Published 06.11.2020 19:15:13
  • Last modified 21.11.2024 05:19:12

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker with administrative credentials to conduct a cross-site scripting (XSS) attack against a user of the interface...

7.2

CVE-2020-27122

  • EPSS 0.05%
  • Published 06.11.2020 19:15:13
  • Last modified 21.11.2024 05:20:45

A vulnerability in the Microsoft Active Directory integration of Cisco Identity Services Engine (ISE) could allow an authenticated, local attacker to elevate privileges on an affected device. To exploit this vulnerability, an attacker would need to h...

4.8

CVE-2020-3589

  • EPSS 0.2%
  • Published 08.10.2020 05:15:15
  • Last modified 21.11.2024 05:31:22

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) Software could allow an authenticated, remote attacker with administrative credentials to conduct a cross-site scripting (XSS) attack against a user of the ...

7.7

CVE-2020-3467

  • EPSS 0.13%
  • Published 08.10.2020 05:15:14
  • Last modified 21.11.2024 05:31:07

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to modify parts of the configuration on an affected device. The vulnerability is due to improper enforcement o...

6.9

CVE-2019-1736

  • EPSS 0.03%
  • Published 23.09.2020 01:15:14
  • Last modified 21.11.2024 04:37:12

A vulnerability in the firmware of the Cisco UCS C-Series Rack Servers could allow an authenticated, physical attacker to bypass Unified Extensible Firmware Interface (UEFI) Secure Boot validation checks and load a compromised software image on an af...

4.8

CVE-2020-3340

  • EPSS 0.17%
  • Published 02.07.2020 05:15:11
  • Last modified 21.11.2024 05:30:50

Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker with administrative credentials to conduct a cross-site scripting (XSS) attack against a user of the ...

5.9

CVE-2020-3353

  • EPSS 0.38%
  • Published 03.06.2020 19:15:11
  • Last modified 21.11.2024 05:30:51

A vulnerability in the syslog processing engine of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a race condition t...

5.4

CVE-2020-3157

  • EPSS 0.22%
  • Published 04.03.2020 19:15:12
  • Last modified 21.11.2024 05:30:26

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based interface. The vulnerability is...

6.1

CVE-2020-3156

  • EPSS 0.21%
  • Published 19.02.2020 20:15:15
  • Last modified 21.11.2024 05:30:26

A vulnerability in the logging component of Cisco Identity Services Engine could allow an unauthenticated remote attacker to conduct cross-site scripting attacks. The vulnerability is due to the improper validation of endpoint data stored in logs use...