Roberto Petrillo

**Name of the Vulnerable Software and Affected Versions** Cisco Evolved Programmable Network Manager (EPNM) and Cisco Prime Infrastructure (affected versions not specified) **Description** A stored cross-site scripting (XSS) attack is possible due to the web-based management interface not properly validating user-supplied input. An attacker with valid administrative credentials could insert malicious code into specific data fields, allowing them to execute arbitrary script code or access sensitive browser-based information. **Recommendations** For Cisco Evolved Programmable Network Manager (EPNM) and Cisco Prime Infrastructure, as a temporary workaround, consider restricting access to the web-based management interface until a patch is available. Avoid using the interface with administrative credentials until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Cisco Secure Firewall Management Center (FMC) Software versions (affected versions not specified) Description: A vulnerability in the cluster backup feature could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system. This issue is due to insufficient validation of user data supplied through the web-based management interface. An attacker could exploit this by sending a crafted HTTP request to an affected device, allowing them to execute arbitrary operating system commands. The attacker would need valid credentials for a user account with at least the role of Network Administrator and would also need to persuade a legitimate user to initiate a cluster backup on the affected device. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Cisco AsyncOS Software for Cisco Secure Email Gateway (affected versions not specified) Description: The issue is related to insufficient validation of user input in the web-based management interface, allowing an authenticated, remote attacker to conduct an XSS attack against a user of the interface. This could be achieved by persuading a user to click a crafted link, potentially enabling the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco BroadWorks (affected versions not specified) **Description** The issue exists due to insufficient input validation by the operating system CLI, allowing an attacker to elevate privileges to the root user on an affected device. An attacker could exploit this by issuing a crafted command to the affected system, potentially executing commands as the root user. The attacker must have valid BroadWorks administrative privileges on the affected device to exploit this issue. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco AsyncOS Software for Cisco Secure Email and Web Manager versions not specified Cisco Secure Email Gateway, formerly Cisco Email Security Appliance (ESA) versions not specified Cisco Secure Web Appliance, formerly Cisco Web Security Appliance (WSA) versions not specified **Description** The issue concerns multiple vulnerabilities in the web-based management interface of the mentioned Cisco products. These vulnerabilities could allow a remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. The vulnerabilities exist due to inadequate protection of the web page structure. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco Identity Services Engine (ISE) (affected versions not specified) **Description** The issue is related to multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE), which could allow an authenticated, remote attacker to download arbitrary files from the filesystem of an affected device. These vulnerabilities are due to insufficient input validation and incorrect restriction of directory path names. An attacker could exploit these vulnerabilities by sending crafted HTTP requests to an affected device, potentially allowing the download of arbitrary files from the underlying filesystem. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco Identity Services Engine (ISE) (affected versions not specified) **Description** A vulnerability in the web-based management interface could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This issue is due to insufficient validation of user-supplied input by the interface. An attacker could exploit this by injecting malicious code into specific pages, potentially allowing the execution of arbitrary script in the context of the affected interface or access to sensitive, browser-based information. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.