PT-2016-7709 · Cisco · Cisco Identity Services Engine
Publicado
2016-12-14
·
Atualizado
2016-12-22
·
CVE-2016-9214
CVSS v3.1
6.1
Média
| Vetor | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Cisco Identity Services Engine (ISE) version 2.0(101.130)
Description
The issue allows an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against the user of the web interface of the affected system.
Recommendations
For Cisco Identity Services Engine (ISE) version 2.0(101.130), at the moment, there is no information about a newer version that contains a fix for this vulnerability.
XSS
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Cisco Identity Services Engine