Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
identity services engine software vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2021-34702
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to obtain sensitive information. This vulnerability is due to improper enforcement of administrator privilege levels for low-value sen...
Cisco Identity Services Engine 2.6.0
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine
8.1
CVSSv3
CVE-2021-1594
A vulnerability in the REST API of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote malicious user to perform a command injection attack and elevate privileges to root. This vulnerability is due to insufficient input validation for specific API endpoint...
Cisco Identity Services Engine 2.4\\(0.902\\)
Cisco Identity Services Engine 2.6\\(0.156\\)
Cisco Identity Services Engine 2.6.0
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine
Cisco Identity Services Engine 2.7\\(0.903\\)
Cisco Identity Services Engine 3.0\\(0.458\\)
Cisco Identity Services Engine 3.1\\(0.440\\)
4.8
CVSSv3
CVE-2021-34759
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) Software could allow an authenticated, remote attacker with administrative credentials to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability ...
Cisco Identity Services Engine 2.4.0
Cisco Identity Services Engine 2.3.0
Cisco Identity Services Engine 2.6.0
Cisco Identity Services Engine 2.2.0
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine
4.8
CVSSv3
CVE-2021-1603
Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user. These vulnerabilities exist because the web-based manag...
Cisco Identity Services Engine
Cisco Identity Services Engine 2.6.0
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 2.6\\(0.999\\)
Cisco Identity Services Engine 2.7\\(0.356\\)
4.8
CVSSv3
CVE-2021-1604
Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user. These vulnerabilities exist because the web-based manag...
Cisco Identity Services Engine
Cisco Identity Services Engine 2.6.0
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 2.6\\(0.999\\)
Cisco Identity Services Engine 2.7\\(0.356\\)
4.8
CVSSv3
CVE-2021-1605
Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user. These vulnerabilities exist because the web-based manag...
Cisco Identity Services Engine
Cisco Identity Services Engine 2.6.0
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 2.6\\(0.999\\)
Cisco Identity Services Engine 2.7\\(0.356\\)
4.8
CVSSv3
CVE-2021-1606
Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user. These vulnerabilities exist because the web-based manag...
Cisco Identity Services Engine
Cisco Identity Services Engine 2.6.0
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 2.6\\(0.999\\)
Cisco Identity Services Engine 2.7\\(0.356\\)
4.8
CVSSv3
CVE-2021-1607
Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user. These vulnerabilities exist because the web-based manag...
Cisco Identity Services Engine
Cisco Identity Services Engine 2.6.0
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 2.6\\(0.999\\)
Cisco Identity Services Engine 2.7\\(0.356\\)
7.4
CVSSv3
CVE-2021-1134
A vulnerability in the Cisco Identity Services Engine (ISE) integration feature of the Cisco DNA Center Software could allow an unauthenticated, remote malicious user to gain unauthorized access to sensitive data. The vulnerability is due to an incomplete validation of the X.509 ...
Cisco Dna Center
3.4
CVSSv3
CVE-2021-1306
A vulnerability in the restricted shell of Cisco Evolved Programmable Network (EPN) Manager, Cisco Identity Services Engine (ISE), and Cisco Prime Infrastructure could allow an authenticated, local malicious user to identify directories and write arbitrary files to the file syste...
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine
Cisco Evolved Programmable Network Manager
Cisco Prime Infrastructure 3.8.1
Cisco Prime Infrastructure
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »