CVE-2024-20486 | Cisco Identity Services Engine Software up to 3.3.0 Web-based Management Interface cross-site request forgery (cisco-sa-ise-csrf-y4ZUz5Rj)

Inserito da Angelo Barbosa | Ago 21, 2024 | CVE

A vulnerability classified as problematic was found in Cisco Identity Services Engine Software. This vulnerability affects unknown code of the component Web-based Management Interface. The manipulation leads to cross-site request forgery.

This vulnerability was named CVE-2024-20486. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-20486 | Cisco Identity Services Engine Software up to 3.3.0 Web-based Management Interface cross-site request forgery (cisco-sa-ise-csrf-y4ZUz5Rj)

Post correlati

CVE-2023-52307 | Paddle up to 2.5.x buffer overflow (pdsa-2023-016)

CVE-2024-0909 | Anonymous Restricted Content Plugin up to 1.6.2 on WordPress protection mechanism

CVE-2024-51127 | hornetq 2.4.9 createTempFile information disclosure

CVE-2024-29955 | Brocade SANnav up to 2.3.0 PostgreSQL log file