Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco identity services engine 3.2 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2023-20087
Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to download arbitrary files from the filesystem of an affected device. These vulnerabilities are due to insufficient input va...
Cisco Identity Services Engine
Cisco Identity Services Engine 3.2
6
CVSSv3
CVE-2023-20030
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to access sensitive information, conduct a server-side request forgery (SSRF) attack through an affected device, or negatively impact ...
Cisco Identity Services Engine 3.2
Cisco Identity Services Engine
4.9
CVSSv3
CVE-2023-20194
A vulnerability in the ERS API of Cisco ISE could allow an authenticated, remote malicious user to read arbitrary files on the underlying operating system of an affected device. To exploit this vulnerability, an attacker must have valid Administrator-level privileges on the affec...
Cisco Identity Services Engine
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 3.1
Cisco Identity Services Engine 3.2
1 Article
6.5
CVSSv3
CVE-2023-20171
Multiple vulnerabilities in Cisco Identity Services Engine (ISE) could allow an authenticated malicious user to delete or read arbitrary files on the underlying operating system. To exploit these vulnerabilities, an attacker must have valid credentials on an affected device. For ...
Cisco Identity Services Engine 3.1
Cisco Identity Services Engine 3.2
4.9
CVSSv3
CVE-2023-20172
Multiple vulnerabilities in Cisco Identity Services Engine (ISE) could allow an authenticated malicious user to delete or read arbitrary files on the underlying operating system. To exploit these vulnerabilities, an attacker must have valid credentials on an affected device. For ...
Cisco Identity Services Engine 3.1
Cisco Identity Services Engine 3.2
3.8
CVSSv3
CVE-2023-20106
Multiple vulnerabilities in Cisco Identity Services Engine (ISE) could allow an authenticated malicious user to delete or read arbitrary files on the underlying operating system. To exploit these vulnerabilities, an attacker must have valid credentials on an affected device. For ...
Cisco Identity Services Engine 3.1
Cisco Identity Services Engine 3.2
7.8
CVSSv3
CVE-2023-20122
Multiple vulnerabilities in the restricted shell of Cisco Evolved Programmable Network Manager (EPNM), Cisco Identity Services Engine (ISE), and Cisco Prime Infrastructure could allow an authenticated, local malicious user to escape the restricted shell and gain root privileges o...
Cisco Identity Services Engine 3.2
6.7
CVSSv3
CVE-2023-20121
Multiple vulnerabilities in the restricted shell of Cisco Evolved Programmable Network Manager (EPNM), Cisco Identity Services Engine (ISE), and Cisco Prime Infrastructure could allow an authenticated, local malicious user to escape the restricted shell and gain root privileges o...
Cisco Identity Services Engine 3.2
Cisco Prime Infrastructure
Cisco Evolved Programmable Network Manager
5.4
CVSSv3
CVE-2022-20959
A vulnerability in the External RESTful Services (ERS) API of Cisco Identity Services Engine (ISE) Software could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface of an affected device. This vulnerability...
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 3.1
Cisco Identity Services Engine
Cisco Identity Services Engine 3.2
6.7
CVSSv3
CVE-2023-20152
Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could allow an authenticated, local malicious user to perform command injection attacks on the underlying operating system and elevate privileges to root. To exploit these vulnerabilities, an a...
Cisco Identity Services Engine 3.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »