Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco identity services engine software - vulnerabilities and exploits
(subscribe to this query)
6.7
CVSSv3
CVE-2023-20193
A vulnerability in the Embedded Service Router (ESR) of Cisco ISE could allow an authenticated, local malicious user to read, write, or delete arbitrary files on the underlying operating system and escalate their privileges to root. To exploit this vulnerability, an attacker must...
Cisco Identity Services Engine
1 Article
6.7
CVSSv3
CVE-2023-20166
Multiple vulnerabilities in Cisco Identity Services Engine (ISE) could allow an authenticated malicious user to perform path traversal attacks on the underlying operating system to either elevate privileges to root or read arbitrary files. To exploit these vulnerabilities, an att...
Cisco Identity Services Engine 3.2
6.7
CVSSv3
CVE-2023-20153
Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could allow an authenticated, local malicious user to perform command injection attacks on the underlying operating system and elevate privileges to root. To exploit these vulnerabilities, an a...
Cisco Identity Services Engine 3.2
6.7
CVSSv3
CVE-2023-20121
Multiple vulnerabilities in the restricted shell of Cisco Evolved Programmable Network Manager (EPNM), Cisco Identity Services Engine (ISE), and Cisco Prime Infrastructure could allow an authenticated, local malicious user to escape the restricted shell and gain root privileges o...
Cisco Identity Services Engine 3.2
Cisco Prime Infrastructure
Cisco Evolved Programmable Network Manager
6.7
CVSSv3
CVE-2023-20152
Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could allow an authenticated, local malicious user to perform command injection attacks on the underlying operating system and elevate privileges to root. To exploit these vulnerabilities, an a...
Cisco Identity Services Engine 3.2
6.7
CVSSv3
CVE-2023-20022
Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could allow an authenticated, local malicious user to perform command injection attacks on the underlying operating system and elevate privileges to root. To exploit these vulnerabilities, an a...
Cisco Identity Services Engine 3.2
6.7
CVSSv3
CVE-2023-20023
Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could allow an authenticated, local malicious user to perform command injection attacks on the underlying operating system and elevate privileges to root. To exploit these vulnerabilities, an a...
Cisco Identity Services Engine 3.2
6.7
CVSSv3
CVE-2023-20021
Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could allow an authenticated, local malicious user to perform command injection attacks on the underlying operating system and elevate privileges to root. To exploit these vulnerabilities, an a...
Cisco Identity Services Engine 3.2
6.7
CVSSv3
CVE-2020-27122
A vulnerability in the Microsoft Active Directory integration of Cisco Identity Services Engine (ISE) could allow an authenticated, local malicious user to elevate privileges on an affected device. To exploit this vulnerability, an attacker would need to have a valid administrato...
Cisco Identity Services Engine
6.7
CVSSv3
CVE-2018-0275
A vulnerability in the support tunnel feature of Cisco Identity Services Engine (ISE) could allow an authenticated, local malicious user to access the device's shell. The vulnerability is due to improper configuration of the support tunnel feature. An attacker could exploit ...
Cisco Identity Services Engine
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »