CVE-2024-20469 | Cisco Identity Services Engine Software up to 3.3.0 CLI os command injection (cisco-sa-ise-injection-6kn9tSxm)

Inserito da Angelo Barbosa | Set 4, 2024 | CVE

A vulnerability was found in Cisco Identity Services Engine Software. It has been declared as critical. This vulnerability affects unknown code of the component CLI. The manipulation leads to os command injection.

This vulnerability was named CVE-2024-20469. Local access is required to approach this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-20469 | Cisco Identity Services Engine Software up to 3.3.0 CLI os command injection (cisco-sa-ise-injection-6kn9tSxm)

Post correlati

CVE-2024-41108 | FOGproject FOG prior 1.5.10.41 Hostinfo Page information disclosure (GHSA-p3f9-4jj4-fm2g)

CVE-2024-25138 | AutomationDirect C-MORE EA9 HMI up to 6.77 credentials storage (icsa-24-086-01)

CVE-2023-49867 | LevelOne WBR-6013 RER4_A_v3411b_2T2R_LEV_09_170623 Realtek rtl819x Jungle SDK formWsc stack-based overflow (TALOS-2023-1904)

CVE-2024-51793 | Webful Creations Computer Repair Shop Plugin up to 3.8115 on WordPress unrestricted upload