Cisco

Identity Services Engine

140 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.7

CVE-2023-20166

  • EPSS 0.08%
  • Published 18.05.2023 03:15:10
  • Last modified 21.11.2024 07:40:43

Multiple vulnerabilities in Cisco Identity Services Engine (ISE) could allow an authenticated attacker to perform path traversal attacks on the underlying operating system to either elevate privileges to root or read arbitrary files. To exploit these...

4.9

CVE-2023-20167

  • EPSS 0.19%
  • Published 18.05.2023 03:15:10
  • Last modified 21.11.2024 07:40:43

Multiple vulnerabilities in Cisco Identity Services Engine (ISE) could allow an authenticated attacker to perform path traversal attacks on the underlying operating system to either elevate privileges to root or read arbitrary files. To exploit these...

6.5

CVE-2023-20171

  • EPSS 0.15%
  • Published 18.05.2023 03:15:10
  • Last modified 21.11.2024 07:40:44

Multiple vulnerabilities in Cisco Identity Services Engine (ISE) could allow an authenticated attacker to delete or read arbitrary files on the underlying operating system. To exploit these vulnerabilities, an attacker must have valid credentials on ...

4.9

CVE-2023-20172

  • EPSS 0.12%
  • Published 18.05.2023 03:15:10
  • Last modified 21.11.2024 07:40:44

Multiple vulnerabilities in Cisco Identity Services Engine (ISE) could allow an authenticated attacker to delete or read arbitrary files on the underlying operating system. To exploit these vulnerabilities, an attacker must have valid credentials on ...

4.9

CVE-2023-20173

  • EPSS 0.09%
  • Published 18.05.2023 03:15:10
  • Last modified 21.11.2024 07:40:44

Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to read arbitrary files or conduct a server-side request forgery (SSRF) attack through an affected de...

4.9

CVE-2023-20174

  • EPSS 0.06%
  • Published 18.05.2023 03:15:10
  • Last modified 21.11.2024 07:40:44

Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to read arbitrary files or conduct a server-side request forgery (SSRF) attack through an affected de...

6.5

CVE-2023-20077

  • EPSS 0.06%
  • Published 18.05.2023 03:15:09
  • Last modified 21.11.2024 07:40:29

Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to download arbitrary files from the filesystem of an affected device. These vulnerabilities are due ...

6.5

CVE-2023-20087

  • EPSS 0.06%
  • Published 18.05.2023 03:15:09
  • Last modified 21.11.2024 07:40:31

Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to download arbitrary files from the filesystem of an affected device. These vulnerabilities are due ...

3.8

CVE-2023-20106

  • EPSS 0.11%
  • Published 18.05.2023 03:15:09
  • Last modified 21.11.2024 07:40:33

Multiple vulnerabilities in Cisco Identity Services Engine (ISE) could allow an authenticated attacker to delete or read arbitrary files on the underlying operating system. To exploit these vulnerabilities, an attacker must have valid credentials on ...

6.7

CVE-2023-20153

  • EPSS 0.06%
  • Published 05.04.2023 19:15:09
  • Last modified 21.11.2024 07:40:40

Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could allow an authenticated, local attacker to perform command injection attacks on the underlying operating system and elevate privileges to root. To exploit the...