gsd-2024-20251
Vulnerability from gsd
Modified
2023-12-13 01:21
Details
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to perform a stored cross-site scripting (XSS) attack against a user of the interface on an affected device. This vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.
Aliases
Aliases
{ "GSD": { "alias": "CVE-2024-20251", "id": "GSD-2024-20251" }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2024-20251" ], "details": "A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to perform a stored cross-site scripting (XSS) attack against a user of the interface on an affected device. This vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.", "id": "GSD-2024-20251", "modified": "2023-12-13T01:21:42.839895Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "psirt@cisco.com", "ID": "CVE-2024-20251", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Cisco Identity Services Engine Software", "version": { "version_data": [ { "version_affected": "=", "version_value": "2.7.0" }, { "version_affected": "=", "version_value": "2.7.0 p1" }, { "version_affected": "=", "version_value": "2.7.0 p2" }, { "version_affected": "=", "version_value": "2.7.0 p3" }, { "version_affected": "=", "version_value": "2.7.0 p4" }, { "version_affected": "=", "version_value": "2.7.0 p5" }, { "version_affected": "=", "version_value": "2.7.0 p6" }, { "version_affected": "=", "version_value": "2.7.0 p7" }, { "version_affected": "=", "version_value": "2.7.0 p8" }, { "version_affected": "=", "version_value": "2.7.0 p9" }, { "version_affected": "=", "version_value": "2.7.0 p10" }, { "version_affected": "=", "version_value": "3.0.0" }, { "version_affected": "=", "version_value": "3.0.0 p1" }, { "version_affected": "=", "version_value": "3.0.0 p2" }, { "version_affected": "=", "version_value": "3.0.0 p3" }, { "version_affected": "=", "version_value": "3.0.0 p4" }, { "version_affected": "=", "version_value": "3.0.0 p5" }, { "version_affected": "=", "version_value": "3.0.0 p6" }, { "version_affected": "=", "version_value": "3.0.0 p7" }, { "version_affected": "=", "version_value": "3.0.0 p8" }, { "version_affected": "=", "version_value": "3.1.0" }, { "version_affected": "=", "version_value": "3.1.0 p1" }, { "version_affected": "=", "version_value": "3.1.0 p3" }, { "version_affected": "=", "version_value": "3.1.0 p2" }, { "version_affected": "=", "version_value": "3.1.0 p4" }, { "version_affected": "=", "version_value": "3.1.0 p5" }, { "version_affected": "=", "version_value": "3.1.0 p6" }, { "version_affected": "=", "version_value": "3.1.0 p7" }, { "version_affected": "=", "version_value": "3.2.0" }, { "version_affected": "=", "version_value": "3.2.0 p1" }, { "version_affected": "=", "version_value": "3.2.0 p2" }, { "version_affected": "=", "version_value": "3.2.0 p3" }, { "version_affected": "=", "version_value": "3.2.0 p4" }, { "version_affected": "=", "version_value": "3.3.0" } ] } } ] }, "vendor_name": "Cisco" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to perform a stored cross-site scripting (XSS) attack against a user of the interface on an affected device. This vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information." } ] }, "exploit": [ { "lang": "en", "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory." } ], "impact": { "cvss": [ { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N", "version": "3.1" } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "cweId": "CWE-79", "lang": "eng", "value": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)" } ] } ] }, "references": { "reference_data": [ { "name": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ISE-XSS-bL4VTML", "refsource": "MISC", "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ISE-XSS-bL4VTML" } ] }, "source": { "advisory": "cisco-sa-ISE-XSS-bL4VTML", "defects": [ "CSCwh00049", "CSCwh70696" ], "discovery": "EXTERNAL" } }, "nvd.nist.gov": { "cve": { "configurations": [ { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:a:cisco:identity_services_engine:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "1E432148-683C-430F-97A4-49928416D8A7", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:1.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "07143503-C861-4319-A207-757C85739C26", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:1.1:*:*:*:*:*:*:*", "matchCriteriaId": "6FB82BBD-C165-4FD8-A73C-8B931B5338BA", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:1.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "3CBDEC80-2088-42CB-A093-52627D8B5FB5", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:1.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "3A9160C1-62EE-4A04-8155-CDDD1D4004BC", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:1.1.3:*:*:*:*:*:*:*", "matchCriteriaId": "0F8EA519-5C8F-418E-A56D-8959BD1E5511", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:1.1.4:*:*:*:*:*:*:*", "matchCriteriaId": "B9BF9471-54DE-40D3-84B4-99D5A7A6003C", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:1.2:*:*:*:*:*:*:*", "matchCriteriaId": "C5777FC4-8614-4C52-B224-2684936421BD", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:1.2\\(1.199\\):*:*:*:*:*:*:*", "matchCriteriaId": "B2A055FD-AC42-4B4C-8DBA-A7FA58CCDE9F", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:1.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "0717D850-E5CE-4392-A8A0-B4F5CCE01DCA", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:1.3:*:*:*:*:*:*:*", "matchCriteriaId": "2A79666B-F4AC-4966-B06D-43B521722A77", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:1.3\\(0.722\\):*:*:*:*:*:*:*", "matchCriteriaId": "EBDA2348-7DF8-4A0C-AC7B-FA02E9A48D4F", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:1.3\\(0.876\\):*:*:*:*:*:*:*", "matchCriteriaId": "40531FF3-D0DB-4DBA-A92C-C4E09EF46796", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:1.3\\(0.909\\):*:*:*:*:*:*:*", "matchCriteriaId": "E5B2A9A5-344D-4147-96C3-C2C1E21E760A", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:1.3\\(106.146\\):*:*:*:*:*:*:*", "matchCriteriaId": "72637FC1-19A0-4B23-ABEC-0D9606741452", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:1.3\\(120.135\\):*:*:*:*:*:*:*", "matchCriteriaId": "D435868B-CC18-4BE3-995C-D67BA1BF53B6", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:1.4:*:*:*:*:*:*:*", "matchCriteriaId": "C0F5FB19-E192-4643-9BDE-C0E66944A8B0", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:1.4\\(0.109\\):*:*:*:*:*:*:*", "matchCriteriaId": "A33974F4-0716-484A-AE94-0D9B241A5B18", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:1.4\\(0.181\\):*:*:*:*:*:*:*", "matchCriteriaId": "974E0C3B-40FF-42BD-8B5C-B24951FC9EF8", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:1.4\\(0.253\\):*:*:*:*:*:*:*", "matchCriteriaId": "C4840347-066A-4045-A676-413B7969A7BD", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:1.4\\(0.908\\):*:*:*:*:*:*:*", "matchCriteriaId": "0BD23FB7-BFEA-45EF-BABE-983AB6536FE3", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.0:*:*:*:*:*:*:*", "matchCriteriaId": "F903F456-43EA-43C6-9B64-AE4BDB3DF2ED", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.0\\(0.147\\):*:*:*:*:*:*:*", "matchCriteriaId": "733EC91E-7240-4CED-A699-67B4D4D8BE89", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.0\\(0.169\\):*:*:*:*:*:*:*", "matchCriteriaId": "6E706A31-E8FD-40B5-9523-817603C43247", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.0\\(0.222\\):*:*:*:*:*:*:*", "matchCriteriaId": "A2CA3F80-69B7-4767-A05A-648B0D9C06B6", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.0\\(0.234\\):*:*:*:*:*:*:*", "matchCriteriaId": "273ED9BB-EB99-46EB-897D-40C06F51921A", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.0\\(0.249\\):*:*:*:*:*:*:*", "matchCriteriaId": "3943D6BB-A91D-4869-A139-470290CD094D", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.0\\(0.306\\):*:*:*:*:*:*:*", "matchCriteriaId": "91398750-AA2D-4D5C-9853-F39E37B6D79B", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.0\\(1.130\\):*:*:*:*:*:*:*", "matchCriteriaId": "177D1AD9-E72A-45A9-A5A3-1343241A397D", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "0B1AABC0-CD5A-48B7-8D84-5F45FDCCAD50", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.1:*:*:*:*:*:*:*", "matchCriteriaId": "D6059C80-64FF-4E3C-B990-2941EF59BD4E", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.1\\(0.474\\):*:*:*:*:*:*:*", "matchCriteriaId": "F8E53B93-2A49-4B3F-8487-E45D8F70F64C", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.1\\(0.476\\):*:*:*:*:*:*:*", "matchCriteriaId": "29CA5440-C0BE-422A-972D-2465874E8E65", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.1\\(0.800\\):*:*:*:*:*:*:*", "matchCriteriaId": "A653B17F-337E-4342-91EF-92483E0E8C03", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.1\\(0.904\\):*:*:*:*:*:*:*", "matchCriteriaId": "45DE2A5F-C6BA-4EB3-93D7-AC517AFDA53F", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.1\\(0.907\\):*:*:*:*:*:*:*", "matchCriteriaId": "BAB5312C-C251-4D82-AFA4-4FFCD9BBA0E6", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.1\\(102.101\\):*:*:*:*:*:*:*", "matchCriteriaId": "4B01C09C-3587-41F7-AAE9-4CC7B8059C69", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.1\\(102.103\\):*:*:*:*:*:*:*", "matchCriteriaId": "AA4A861B-1B90-443D-92A0-D327D0CCE9A7", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2:*:*:*:*:*:*:*", "matchCriteriaId": "88A2954B-1D10-44AD-A1CC-1B605D95C765", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2\\(0.283\\):*:*:*:*:*:*:*", "matchCriteriaId": "E07ED241-D48D-4FEE-B472-ECCB8C099A2F", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2\\(0.470\\):*:*:*:*:*:*:*", "matchCriteriaId": "DF54E8D0-76EE-40DE-A971-000C0B66A373", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2\\(0.471\\):*:*:*:*:*:*:*", "matchCriteriaId": "E806DDD7-F6CB-42FB-A6C8-F6874A0DD941", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2\\(0.903\\):*:*:*:*:*:*:*", "matchCriteriaId": "017A3477-5FA5-4D8D-8C33-14E1209CABA7", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2\\(0.909\\):*:*:*:*:*:*:*", "matchCriteriaId": "32411DF9-0B83-45A0-8546-5EB64B762B82", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2\\(0.910\\):*:*:*:*:*:*:*", "matchCriteriaId": "7F634714-4EC3-4741-8A14-2C8500A6C09E", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2\\(1.145\\):*:*:*:*:*:*:*", "matchCriteriaId": "0169E031-2894-4762-A269-5A6A66EEA86A", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0:-:*:*:*:*:*:*", "matchCriteriaId": "6B745703-F324-4897-985A-C1EBFC0B28CF", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0:patch1:*:*:*:*:*:*", "matchCriteriaId": "892DB574-57FF-4BCB-AF2E-FC06B4BD6D4F", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0:patch10:*:*:*:*:*:*", "matchCriteriaId": "21A50C17-5BDB-4653-B487-BADF85E0BC87", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0:patch12:*:*:*:*:*:*", "matchCriteriaId": "FF441C3D-3899-4F3B-BAE7-7455B1B266FD", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0:patch13:*:*:*:*:*:*", "matchCriteriaId": "AE50F5A9-32FD-474C-AD48-76C88E67BF2F", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0:patch14:*:*:*:*:*:*", "matchCriteriaId": "6ACC10FC-BDFD-4F81-AE3C-53854DBCE651", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0:patch15:*:*:*:*:*:*", "matchCriteriaId": "B053A615-9604-4972-816E-EFF717DE3482", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0:patch16:*:*:*:*:*:*", "matchCriteriaId": "B1EEFEB1-10A2-4959-A2D7-2BE3012BEF6B", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0:patch17:*:*:*:*:*:*", "matchCriteriaId": "A26FBA47-E221-45A2-A06A-FC32ADA99029", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0:patch2:*:*:*:*:*:*", "matchCriteriaId": "0170399B-1A44-4668-84C8-CDAAF04EAF95", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0:patch3:*:*:*:*:*:*", "matchCriteriaId": "22A878D0-FFB5-4137-B1D1-32DFF92E9813", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0:patch4:*:*:*:*:*:*", "matchCriteriaId": "113D2AAF-40C0-443D-BFD7-FA352975FB98", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0:patch5:*:*:*:*:*:*", "matchCriteriaId": "62C8D6ED-4C80-43D6-A506-4781A9127766", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0:patch6:*:*:*:*:*:*", "matchCriteriaId": "95FE522E-802E-44F2-8718-DF1BE8A8A9F3", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0:patch7:*:*:*:*:*:*", "matchCriteriaId": "380F0E00-C94A-4B2D-838C-50801FFBB6F2", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0:patch8:*:*:*:*:*:*", "matchCriteriaId": "1E05CB16-35B2-4BFE-B79D-CCF91A995D62", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0:patch9:*:*:*:*:*:*", "matchCriteriaId": "9D86E0F9-44F1-4059-B757-03EBF35CAF84", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0.470:-:*:*:*:*:*:*", "matchCriteriaId": "E6D0F9C0-DFF6-4EAB-A4BE-7C155FCC3C28", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0.470:patch1:*:*:*:*:*:*", "matchCriteriaId": "8114A0B4-F81C-4EB8-AC17-AF4781F6CAB2", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0.470:patch10:*:*:*:*:*:*", "matchCriteriaId": "70B293D8-207E-43BD-BAA3-E79ED562B52D", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0.470:patch11:*:*:*:*:*:*", "matchCriteriaId": "25B5B012-A6FD-4B53-8116-AEA7A932F376", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0.470:patch12:*:*:*:*:*:*", "matchCriteriaId": "8260B1A1-3D16-46DA-90EC-42A546CE564F", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0.470:patch13:*:*:*:*:*:*", "matchCriteriaId": "70C00EEF-C119-41B5-8140-77BEEF639CA2", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0.470:patch14:*:*:*:*:*:*", "matchCriteriaId": "423BD5AD-C8E1-47DC-BF61-D285B29442BD", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0.470:patch15:*:*:*:*:*:*", "matchCriteriaId": "F88D615F-F9EE-4282-A476-85B5B2078F78", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0.470:patch16:*:*:*:*:*:*", "matchCriteriaId": "732FDC75-C3C5-4FD0-93B7-1A3CE4DEA507", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0.470:patch2:*:*:*:*:*:*", "matchCriteriaId": "BF38434A-060E-42C2-A622-8E1ED51CAC7F", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0.470:patch3:*:*:*:*:*:*", "matchCriteriaId": "81300E10-0BDD-490D-BBE9-CA75803426C1", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0.470:patch4:*:*:*:*:*:*", "matchCriteriaId": "3BC7044A-6FB4-457F-808F-FA1F8B85469A", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0.470:patch5:*:*:*:*:*:*", "matchCriteriaId": "4C0BE493-4EE9-404E-B7BA-3525CA7AE9D7", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0.470:patch6:*:*:*:*:*:*", "matchCriteriaId": "7EFC7A75-B2FA-4F36-91A0-E32B5D7ECD93", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0.470:patch7:*:*:*:*:*:*", "matchCriteriaId": "8A7009F6-4418-4CAD-B489-DC104CDC050C", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0.470:patch8:*:*:*:*:*:*", "matchCriteriaId": "88970AD1-07E3-4A67-A20F-AB0FE13E1B2A", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.2.0.470:patch9:*:*:*:*:*:*", "matchCriteriaId": "7605EBFC-6810-46A9-960D-816412E6DD23", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.3:*:*:*:*:*:*:*", "matchCriteriaId": "6C3B7953-F0EF-4447-B329-4DC369C924A5", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.3\\(0.151\\):*:*:*:*:*:*:*", "matchCriteriaId": "C55077AB-5532-4377-8F08-014A36153394", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.3\\(0.298\\):*:*:*:*:*:*:*", "matchCriteriaId": "422288B0-9F85-4420-8E5E-83378E099853", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.3\\(0.904\\):*:*:*:*:*:*:*", "matchCriteriaId": "6FCC8CD4-59C2-4F4E-96A9-5195B2C28041", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.3\\(0.905\\):*:*:*:*:*:*:*", "matchCriteriaId": "3C7FFDEB-EEC6-4EA8-9F22-5F33EE280AD2", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.3.0:-:*:*:*:*:*:*", "matchCriteriaId": "7C2FE2F6-5AE9-4A7C-B3A1-ADBCF2943E68", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.3.0:patch1:*:*:*:*:*:*", "matchCriteriaId": "4BBADFC2-2932-47F7-A547-B5248D1D1A5C", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.3.0:patch2:*:*:*:*:*:*", "matchCriteriaId": "0A829408-50C6-42D7-AFF9-86B965FD069F", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.3.0:patch3:*:*:*:*:*:*", "matchCriteriaId": "6127E2E2-203B-41BF-ADB8-ACA28D12C13C", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.3.0:patch4:*:*:*:*:*:*", "matchCriteriaId": "5AD91197-CEBB-41A5-B1D9-46ADC0C3F12D", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.3.0:patch5:*:*:*:*:*:*", "matchCriteriaId": "49910CE9-E408-49B0-9FB1-0D5CAEE2F0A0", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.3.0:patch6:*:*:*:*:*:*", "matchCriteriaId": "B587597C-3F72-4E5D-A965-DF7C5E2F0014", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.3.0:patch7:*:*:*:*:*:*", "matchCriteriaId": "1F4F2F0A-6525-4C41-B67F-989BD67AF376", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.3.0.298:-:*:*:*:*:*:*", "matchCriteriaId": "2C9676EF-DDF4-46E3-A8B4-9AD51881E4DA", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.3.0.298:patch1:*:*:*:*:*:*", "matchCriteriaId": "4EE51B0E-75A2-4BCF-848C-0EEEDFE3C41A", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.3.0.298:patch2:*:*:*:*:*:*", "matchCriteriaId": "60A8BF35-41D2-4985-B5CB-721FF433B7CB", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.3.0.298:patch3:*:*:*:*:*:*", "matchCriteriaId": "B633B472-923C-4527-9D2C-F1971FDAB314", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.3.0.298:patch4:*:*:*:*:*:*", "matchCriteriaId": "F6A45D74-4CD6-4941-AB15-3DB3BAFF1467", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.3.0.298:patch5:*:*:*:*:*:*", "matchCriteriaId": "A8E90D56-22D4-433F-9325-D6C7F544E034", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.3.0.298:patch6:*:*:*:*:*:*", "matchCriteriaId": "C07A60F0-BE4D-41F1-B433-433B3883AA30", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.3.0.298:patch7:*:*:*:*:*:*", "matchCriteriaId": "314F6A42-D983-4FC1-8793-81011992B7A6", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4:*:*:*:*:*:*:*", "matchCriteriaId": "0539F84F-7F2D-4698-87D6-B1241A98C9C5", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4\\(0.192\\):*:*:*:*:*:*:*", "matchCriteriaId": "A2D7369E-33E1-495C-A8A2-0C706FA371E9", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4\\(0.247\\):*:*:*:*:*:*:*", "matchCriteriaId": "1FBB23B0-134F-4ADE-8477-5B3D60EF0347", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4\\(0.357\\):*:*:*:*:*:*:*", "matchCriteriaId": "B60E8BB7-EAC5-4120-AFD0-5E72CCC97670", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4\\(0.901\\):*:*:*:*:*:*:*", "matchCriteriaId": "8AED2E27-8011-4480-82EF-19B37484CA53", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4\\(0.901.1\\):*:*:*:*:*:*:*", "matchCriteriaId": "38621A0E-83F6-4898-A29B-FE63225B9315", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4\\(0.902\\):*:*:*:*:*:*:*", "matchCriteriaId": "94961412-9B60-453C-9CBA-B3D90E891491", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4\\(0.903\\):*:*:*:*:*:*:*", "matchCriteriaId": "D761979F-0390-4DC6-B3AC-63F953FA6B37", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4\\(0.904\\):*:*:*:*:*:*:*", "matchCriteriaId": "BF352E12-B209-4206-921F-B6F1B403F117", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:002.004\\(000.914\\):-:*:*:*:*:*:*", "matchCriteriaId": "808F8065-BD3A-4802-83F9-CE132EDB8D34", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4\\(100.159\\):*:*:*:*:*:*:*", "matchCriteriaId": "4C386C66-72C4-4257-80E1-5EF606A05835", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0:-:*:*:*:*:*:*", "matchCriteriaId": "439948AD-C95D-4FC3-ADD1-C3D241529F12", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0:patch_11:*:*:*:*:*:*", "matchCriteriaId": "E1EB60E0-4D01-4B14-ABF4-83769552E08F", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0:patch1:*:*:*:*:*:*", "matchCriteriaId": "934E62A3-4968-484A-8ECC-70027DC70C35", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0:patch10:*:*:*:*:*:*", "matchCriteriaId": "84A3C461-ADFC-4352-86F8-06E32F762BEC", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0:patch11:*:*:*:*:*:*", "matchCriteriaId": "47989AE7-2B37-4424-80CD-61C48599100D", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0:patch12:*:*:*:*:*:*", "matchCriteriaId": "E5D220CF-8178-4F26-B1C3-175A10EBD65B", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0:patch13:*:*:*:*:*:*", "matchCriteriaId": "16A0985C-38A7-401D-9BE1-4FB06105416D", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0:patch14:*:*:*:*:*:*", "matchCriteriaId": "6417CED7-C166-4D94-B0E1-6C17177F7DBA", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0:patch2:*:*:*:*:*:*", "matchCriteriaId": "62B24B6A-1AAA-491E-BD23-4841B101E6EA", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0:patch3:*:*:*:*:*:*", "matchCriteriaId": "B0CF4B74-F6A8-4D90-87A2-888708B4590C", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0:patch4:*:*:*:*:*:*", "matchCriteriaId": "9AF76083-7F81-4470-B363-083144609686", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0:patch5:*:*:*:*:*:*", "matchCriteriaId": "C6973D7D-6638-4E86-A28A-0CEA425C53E5", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0:patch6:*:*:*:*:*:*", "matchCriteriaId": "D52BC38C-69B9-483D-B975-B7C27CFBA336", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0:patch7:*:*:*:*:*:*", "matchCriteriaId": "3F3BA3F0-8635-439D-9B77-0B7713FBF8A3", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0:patch8:*:*:*:*:*:*", "matchCriteriaId": "A5923013-0A76-4109-A58C-62754D7CF0FC", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0:patch9:*:*:*:*:*:*", "matchCriteriaId": "65B47822-FED9-4073-885C-9228599C036D", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0.357:-:*:*:*:*:*:*", "matchCriteriaId": "ED00A491-8BEA-4A21-B2CA-6E17183563E6", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0.357:patch1:*:*:*:*:*:*", "matchCriteriaId": "B2E49C7A-802D-4807-AF48-94112B821ABA", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0.357:patch10:*:*:*:*:*:*", "matchCriteriaId": "87B967FC-3CAA-4DD0-A936-16F9F1EA5E6A", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0.357:patch11:*:*:*:*:*:*", "matchCriteriaId": "AAF39F2B-42A7-4C17-A408-01B46F93C66E", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0.357:patch12:*:*:*:*:*:*", "matchCriteriaId": "8D0BAC39-C3BC-442B-84C3-61F5947785EA", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0.357:patch2:*:*:*:*:*:*", "matchCriteriaId": "1A2E55FE-562A-45F9-9859-33CF0FE31F13", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0.357:patch3:*:*:*:*:*:*", "matchCriteriaId": "CAF04BC3-18CC-4C02-AEDC-82785B5EEC5E", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0.357:patch4:*:*:*:*:*:*", "matchCriteriaId": "5435128C-88C9-4C29-908A-F9765A79B73B", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0.357:patch5:*:*:*:*:*:*", "matchCriteriaId": "311241C1-8E29-4A80-8559-39D120A37A0E", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0.357:patch6:*:*:*:*:*:*", "matchCriteriaId": "A9C80434-077A-4B9B-9EA6-8B44A7B86557", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0.357:patch7:*:*:*:*:*:*", "matchCriteriaId": "058977FE-0FBF-4C66-B961-0698A127EF2A", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0.357:patch8:*:*:*:*:*:*", "matchCriteriaId": "F0341C1F-6F30-4CAC-8D31-58359067DD5E", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.4.0.357:patch9:*:*:*:*:*:*", "matchCriteriaId": "9BE8D28E-1F21-4C90-8A7A-C237B2F4C2C0", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.5:*:*:*:*:*:*:*", "matchCriteriaId": "B3AA2013-B7AA-4CE5-8E51-F686489AC8ED", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.5\\(0.1\\):*:*:*:*:*:*:*", "matchCriteriaId": "15FDDB43-7763-47F7-B96F-0842A0A69765", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.5\\(0.225\\):*:*:*:*:*:*:*", "matchCriteriaId": "BCDE191C-EEF9-483B-A8EB-D703499A9194", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.5\\(0.353\\):*:*:*:*:*:*:*", "matchCriteriaId": "EB529331-9574-438A-83F2-72573970B505", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6:*:*:*:*:*:*:*", "matchCriteriaId": "A18BEB30-0B2A-45FB-A239-2DCA66907B77", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6\\(0.156\\):*:*:*:*:*:*:*", "matchCriteriaId": "2DBAC90B-72AE-4B0B-92DC-D226F3AFD0F8", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:002.006\\(000.156\\):-:*:*:*:*:*:*", "matchCriteriaId": "B236B13E-93B9-424E-926C-95D3DBC6CA5D", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6\\(0.999\\):-:*:*:*:*:*:*", "matchCriteriaId": "F13BAF35-E854-4C04-8FFE-0DB3310501E0", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6.0:-:*:*:*:*:*:*", "matchCriteriaId": "8B45856E-6BE4-40A7-AE2F-4F9DC9315875", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch1:*:*:*:*:*:*", "matchCriteriaId": "1F6D1780-3306-4481-A3CD-8F7732D955CC", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch10:*:*:*:*:*:*", "matchCriteriaId": "00756651-F667-4E4A-8024-3EAF003A9B92", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch11:*:*:*:*:*:*", "matchCriteriaId": "57E9CE5A-219F-4702-9E8A-074ED35BD252", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch12:*:*:*:*:*:*", "matchCriteriaId": "33C600DA-4F42-415E-8E7D-6A9EC0720252", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch2:*:*:*:*:*:*", "matchCriteriaId": "07BF9702-0607-49A1-A82A-E4ADF1A4135F", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch3:*:*:*:*:*:*", "matchCriteriaId": "11AA4EC0-6F3C-45A9-9AA4-0D81876F44B5", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch4:*:*:*:*:*:*", "matchCriteriaId": "9A80C77E-EEA3-440F-B3EA-08468756D3E2", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch5:*:*:*:*:*:*", "matchCriteriaId": "1B4B88F0-3229-4B07-9308-C37C794595A0", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch6:*:*:*:*:*:*", "matchCriteriaId": "E02F0E61-FBFF-4C6D-9132-E266FF67802B", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch7:*:*:*:*:*:*", "matchCriteriaId": "541EC483-540A-4080-AA69-82A0F30EE3D6", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch8:*:*:*:*:*:*", "matchCriteriaId": "66CAFE97-295F-48F7-A92C-A90D3B837483", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6.0:patch9:*:*:*:*:*:*", "matchCriteriaId": "68E172B4-867E-4413-9D45-F04B52270D41", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6.0.156:patch1:*:*:*:*:*:*", "matchCriteriaId": "B0B59AE5-F1C6-40A4-B912-00A8CAF67D3B", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6.0.156:patch2:*:*:*:*:*:*", "matchCriteriaId": "220D24D8-D454-4173-A78C-F9EF4B1864E3", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6.0.156:patch3:*:*:*:*:*:*", "matchCriteriaId": "2AA62908-125C-4696-88F0-CDBED70DD2C4", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6.0.156:patch5:*:*:*:*:*:*", "matchCriteriaId": "59306404-2D46-4E2B-9609-4DCB69D612DD", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6.0.156:patch6:*:*:*:*:*:*", "matchCriteriaId": "3EE5A0AB-8BD4-436E-B2C5-818081444B95", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.6.0.156:patch7:*:*:*:*:*:*", "matchCriteriaId": "0B29D933-1505-45E3-B5A2-8955F1D9E397", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7:*:*:*:*:*:*:*", "matchCriteriaId": "4A5D3792-5ECB-498A-967F-3564DDFB4B36", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7\\(0.207\\):*:*:*:*:*:*:*", "matchCriteriaId": "B82A55D0-F97A-4C8E-86E5-6F7683281290", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7\\(0.356\\):*:*:*:*:*:*:*", "matchCriteriaId": "887E1D44-9739-40E1-8E9E-996FBE0CE823", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7\\(0.356\\):-:*:*:*:*:*:*", "matchCriteriaId": "1002D75A-03DF-4958-8368-8F73F03C3E00", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:002.007\\(000.356\\):-:*:*:*:*:*:*", "matchCriteriaId": "8A63CC83-0A6E-4F33-A1BE-214A33B51518", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7\\(0.903\\):*:*:*:*:*:*:*", "matchCriteriaId": "8E0A5B82-0661-4F2F-932D-4BA3649EA62A", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7.0:-:*:*:*:*:*:*", "matchCriteriaId": "1F22FABF-2831-4895-B0A9-283B98398F43", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch1:*:*:*:*:*:*", "matchCriteriaId": "B83D0F20-5A43-4583-AFAF-CD9D20352437", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch2:*:*:*:*:*:*", "matchCriteriaId": "2887A2C0-BADA-41D3-AA6A-F10BC58AA7F9", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch3:*:*:*:*:*:*", "matchCriteriaId": "5ADE32BD-C500-47D8-86D6-B08F55F1BBDF", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch4:*:*:*:*:*:*", "matchCriteriaId": "22F23314-96BE-42F6-AE07-CC13F8856029", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch5:*:*:*:*:*:*", "matchCriteriaId": "76265489-E5DC-46F1-9475-2FDFCEE32CF4", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch6:*:*:*:*:*:*", "matchCriteriaId": "9517A1B4-45BA-44DD-9122-C86BF9075EFE", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch7:*:*:*:*:*:*", "matchCriteriaId": "1BC35A24-68DB-43C5-A817-9B35018F5990", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch8:*:*:*:*:*:*", "matchCriteriaId": "DC94625A-6ED0-439B-A2DA-15A49B2FED93", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7.0:patch9:*:*:*:*:*:*", "matchCriteriaId": "2392609B-AFEA-4BBD-99FA-E90AD4C2AE8F", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:2.7.0.356:patch1:*:*:*:*:*:*", "matchCriteriaId": "F8AD1027-028B-406F-AE52-D41B790A63CE", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.0\\(0.458\\):*:*:*:*:*:*:*", "matchCriteriaId": "CDA8B438-3EAB-4383-B24B-22D08CB44EE5", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:003.000\\(000.458\\):-:*:*:*:*:*:*", "matchCriteriaId": "37DB7759-6529-46DE-B384-10F060D86A97", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.0.0:-:*:*:*:*:*:*", "matchCriteriaId": "A1063044-BCD7-487F-9880-141C30547E36", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch1:*:*:*:*:*:*", "matchCriteriaId": "DA42E65A-7207-48B8-BE1B-0B352201BC09", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch2:*:*:*:*:*:*", "matchCriteriaId": "75DDAF38-4D5F-4EE4-A428-68D28FC0DA96", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch3:*:*:*:*:*:*", "matchCriteriaId": "C5FB6AA6-F8C9-48A6-BDDA-1D25C43564EB", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch4:*:*:*:*:*:*", "matchCriteriaId": "2B3A267A-5FEA-426D-903E-BD3F4F94A1A4", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch5:*:*:*:*:*:*", "matchCriteriaId": "B1B3207B-1B9C-41AA-8EF6-8478458462E7", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch6:*:*:*:*:*:*", "matchCriteriaId": "C5B9E7F3-B0F2-4A6A-B939-A62E9B12CCEB", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch7:*:*:*:*:*:*", "matchCriteriaId": "EF4C5A58-D0AE-48D6-9757-18C1D5BE5070", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1:-:*:*:*:*:*:*", "matchCriteriaId": "C4DB9726-532F-45CE-81FD-45F2F6C7CE51", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1:patch1:*:*:*:*:*:*", "matchCriteriaId": "2E8F0066-0EC0-41FD-80BE-55C4ED5F6B0E", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1:patch2:*:*:*:*:*:*", "matchCriteriaId": "A1E81F86-7ED6-4D6C-8DAF-09EB2A7BC496", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1:patch3:*:*:*:*:*:*", "matchCriteriaId": "5D1765DB-1BEF-4CE9-8B86-B91F709600EB", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1:patch4:*:*:*:*:*:*", "matchCriteriaId": "3D1E80EF-C3FD-4F7A-B63D-0EAA5C878B11", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1:patch5:*:*:*:*:*:*", "matchCriteriaId": "095F27EC-5713-4D4F-AD06-57D3DF068B90", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1:patch6:*:*:*:*:*:*", "matchCriteriaId": "FEA5210C-E674-4C4B-9EB3-C681C70005B6", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1:patch7:*:*:*:*:*:*", "matchCriteriaId": "C95F2367-A1A0-46B5-AFC0-9929FC899EE2", "vulnerable": true } ], "negate": false, "operator": "OR" } ] }, { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2:-:*:*:*:*:*:*", "matchCriteriaId": "36722B6C-64A5-4D00-94E1-442878C37A35", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2:patch1:*:*:*:*:*:*", "matchCriteriaId": "7EEEA06A-AD58-48D3-8975-B21A961985B3", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2:patch2:*:*:*:*:*:*", "matchCriteriaId": "ED937BCD-60F7-4555-99D8-B6229214FA73", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2:patch3:*:*:*:*:*:*", "matchCriteriaId": "0B7ED8B1-8280-4C69-877A-938F5AAF8E12", "vulnerable": true }, { "criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2:patch4:*:*:*:*:*:*", "matchCriteriaId": "4A84FCBA-C937-4F10-BCFF-6B1A586D9471", "vulnerable": true } ], "negate": false, "operator": "OR" } ] } ], "descriptions": [ { "lang": "en", "value": "A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to perform a stored cross-site scripting (XSS) attack against a user of the interface on an affected device. This vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information." }, { "lang": "es", "value": "Una vulnerabilidad en la interfaz de administraci\u00f3n basada en web de Cisco Identity Services Engine (ISE) podr\u00eda permitir que un atacante remoto autenticado realice un ataque de cross site scripting (XSS) almacenado contra un usuario de la interfaz en un dispositivo afectado. Esta vulnerabilidad existe porque la interfaz de administraci\u00f3n basada en web no valida adecuadamente la entrada proporcionada por el usuario. Un atacante podr\u00eda aprovechar esta vulnerabilidad inyectando c\u00f3digo malicioso en p\u00e1ginas espec\u00edficas de la interfaz. Una explotaci\u00f3n exitoso podr\u00eda permitir al atacante ejecutar c\u00f3digo de script arbitrario en el contexto de la interfaz afectada o acceder a informaci\u00f3n confidencial basada en el navegador." } ], "id": "CVE-2024-20251", "lastModified": "2024-02-02T16:15:53.757", "metrics": { "cvssMetricV31": [ { "cvssData": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "version": "3.1" }, "exploitabilityScore": 2.3, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary" }, { "cvssData": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N", "version": "3.1" }, "exploitabilityScore": 1.7, "impactScore": 2.7, "source": "ykramarz@cisco.com", "type": "Secondary" } ] }, "published": "2024-01-17T17:15:11.350", "references": [ { "source": "ykramarz@cisco.com", "tags": [ "Vendor Advisory" ], "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ISE-XSS-bL4VTML" } ], "sourceIdentifier": "ykramarz@cisco.com", "vulnStatus": "Modified", "weaknesses": [ { "description": [ { "lang": "en", "value": "CWE-79" } ], "source": "nvd@nist.gov", "type": "Primary" }, { "description": [ { "lang": "en", "value": "CWE-79" } ], "source": "ykramarz@cisco.com", "type": "Secondary" } ] } } } }
Loading…
Loading…
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.