Cisco Security Advisory - Cisco Identity Services Engine Cross-Site Scripting Vulnerabilities

Started by Netwörkheäd, November 12, 2021, 12:27:32 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions

Netwörkheäd

November 12, 2021, 12:27:32 PM
Cisco Identity Services Engine Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) Software could allow an attacker to conduct a cross-site scripting (XSS) attack against a user of the interface.


For more information about these vulnerabilities, see the Details section of this advisory.


Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.


This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-xss1-rgxYry2V


     
         
Security Impact Rating:  Medium
   
   
       
CVE: CVE-2021-34738,CVE-2021-40121
Source: Cisco Identity Services Engine Cross-Site Scripting Vulnerabilities
Let's not argue. Let's network!
Print
Go Up Pages1
User actions