CVE-2024-20486 | Cisco Identity Services Engine Software up to 3.3.0 Web-based Management Interface cross-site request forgery (cisco-sa-ise-csrf-y4ZUz5Rj)

Inserito da Angelo Barbosa | Ago 21, 2024 | CVE

A vulnerability classified as problematic was found in Cisco Identity Services Engine Software. This vulnerability affects unknown code of the component Web-based Management Interface. The manipulation leads to cross-site request forgery.

This vulnerability was named CVE-2024-20486. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-20486 | Cisco Identity Services Engine Software up to 3.3.0 Web-based Management Interface cross-site request forgery (cisco-sa-ise-csrf-y4ZUz5Rj)

Post correlati

CVE-2024-3375 | Havelsan Dialogue 1.83.0 ACL permission assignment

CVE-2023-6132 | AVEVA Edge up to 2020 R2 SP2 uncontrolled search path (icsa-24-032-03)

CVE-2024-38144 | Microsoft unknown vulnerability

CVE-2023-51154 | JIZHICMS 2.5 PluginsController.php information disclosure