Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco application services engine vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2021-1396
Multiple vulnerabilities in Cisco Application Services Engine could allow an unauthenticated, remote malicious user to gain privileged access to host-level operations or to learn device-specific information, create diagnostic files, and make limited configuration changes. For mor...
Cisco Application Services Engine
Cisco Application Policy Infrastructure Controller 1.1.3
1 Article
9.8
CVSSv3
CVE-2021-1393
Multiple vulnerabilities in Cisco Application Services Engine could allow an unauthenticated, remote malicious user to gain privileged access to host-level operations or to learn device-specific information, create diagnostic files, and make limited configuration changes. For mor...
Cisco Application Services Engine
Cisco Application Policy Infrastructure Controller 1.1.3
1 Article
9.8
CVSSv3
CVE-2017-6747
A vulnerability in the authentication module of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote malicious user to bypass local authentication. The vulnerability is due to improper handling of authentication requests and policy assignment for externally...
Cisco Identity Services Engine 1.4\\(0.253\\)
Cisco Identity Services Engine 2.0\\(1.130\\)
Cisco Identity Services Engine 2.1\\(0.474\\)
Cisco Identity Services Engine 1.4\\(0.109\\)
Cisco Identity Services Engine 1.4\\(0.181\\)
Cisco Identity Services Engine 2.1 Base
Cisco Identity Services Engine 1.3\\(106.146\\)
Cisco Identity Services Engine 2.0 Base
Cisco Identity Services Engine 1.3\\(0.722\\)
Cisco Identity Services Engine 1.4\\(0.908\\)
Cisco Identity Services Engine 1.3\\(0.876\\)
Cisco Identity Services Engine 2.1\\(0.800\\)
Cisco Identity Services Engine 1.3\\(0.909\\)
Cisco Identity Services Engine 2.0\\(0.222\\)
Cisco Identity Services Engine 2.1\\(102.101\\)
Cisco Identity Services Engine 2.0\\(0.147\\)
Cisco Identity Services Engine 1.3\\(120.135\\)
Cisco Identity Services Engine 2.0\\(0.169\\)
5.4
CVSSv3
CVE-2022-20966
A vulnerability in the web-based management interface of Cisco Identity Services Engine could allow an authenticated, remote malicious user to conduct cross-site scripting attacks against other users of the application web-based management interface. This vulnerability is due to ...
Cisco Identity Services Engine
Cisco Identity Services Engine 2.6.0
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 3.1
Cisco Identity Services Engine 3.2
5.4
CVSSv3
CVE-2022-20967
A vulnerability in the web-based management interface of Cisco Identity Services Engine could allow an authenticated, remote malicious user to conduct cross-site scripting attacks against other users of the application web-based management interface. This vulnerability is due to ...
Cisco Identity Services Engine
Cisco Identity Services Engine 2.6.0
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 3.1
Cisco Identity Services Engine 3.2
5.3
CVSSv3
CVE-2020-3333
A vulnerability in the API of Cisco Application Services Engine Software could allow an unauthenticated, remote malicious user to update event policies on an affected device. The vulnerability is due to insufficient authentication of users who modify policies on an affected devic...
Cisco Application Policy Infrastructure Controller 1.1\\(0c\\)
Cisco Application Services Engine
5.5
CVSSv3
CVE-2020-3335
A vulnerability in the key store of Cisco Application Services Engine Software could allow an authenticated, local malicious user to read sensitive information of other users on an affected device. The vulnerability is due to insufficient authorization limitations. An attacker co...
Cisco Application Policy Infrastructure Controller 1.1\\(0c\\)
Cisco Application Services Engine
7.8
CVSSv3
CVE-2017-12261
A vulnerability in the restricted shell of the Cisco Identity Services Engine (ISE) that is accessible via SSH could allow an authenticated, local malicious user to run arbitrary CLI commands with elevated privileges. The vulnerability is due to incomplete input validation of the...
Cisco Identity Services Engine 1.4
Cisco Identity Services Engine 2.0
Cisco Identity Services Engine 2.0.1
Cisco Identity Services Engine 2.1.0
Cisco Identity Services Engine Express 2.0
Cisco Identity Services Engine Express 2.0.1
Cisco Identity Services Engine Express 2.1.0
Cisco Identity Services Engine Express 1.4
Cisco Identity Services Engine Virtual Appliance 2.0
Cisco Identity Services Engine Virtual Appliance 2.1.0
Cisco Identity Services Engine Virtual Appliance 1.4
Cisco Identity Services Engine Virtual Appliance 2.0.1
5.4
CVSSv3
CVE-2022-20965
A vulnerability in the web-based management interface of Cisco Identity Services Engine could allow an authenticated, remote malicious user to take privileges actions within the web-based management interface. This vulnerability is due to improper access control on a feature with...
Cisco Identity Services Engine
Cisco Identity Services Engine 2.6.0
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 3.1
Cisco Identity Services Engine 3.2
6.1
CVSSv3
CVE-2017-6733
A vulnerability in the web-based application interface of the Cisco Identity Services Engine (ISE) portal could allow an unauthenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the web interface of an affected system. More In...
Cisco Identity Services Engine 2.3\\(0.151\\)
Cisco Identity Services Engine 2.2\\(0.283\\)
Cisco Identity Services Engine 2.1\\(102.101\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »
Vulmon