CVE-2024-20529

Name of the Vulnerable Software and Affected Versions Cisco ISE versions prior to 3.3.0

Description A vulnerability in the API of Cisco ISE could allow an authenticated, remote attacker to read and delete arbitrary files on an affected device. This is due to insufficient validation of user-supplied parameters in API requests. An attacker could exploit this by sending a crafted API request to an affected device, allowing them to read or delete arbitrary files on the underlying operating system. The attacker would need valid Super Admin credentials to exploit this vulnerability.

Recommendations For versions prior to 3.3.0, upgrade the affected components immediately to resolve the issue. As a temporary workaround, consider restricting access to the API or limiting the privileges of Super Admin accounts until the upgrade can be applied.