CVE-2024-20528 | Cisco Identity Services Engine Software up to 3.3.0 API path traversal (cisco-sa-ise-multi-vuln-DBQdWRy)

Inserito da Angelo Barbosa | Nov 6, 2024 | CVE

A vulnerability classified as critical was found in Cisco Identity Services Engine Software. This vulnerability affects unknown code of the component API. The manipulation leads to path traversal.

This vulnerability was named CVE-2024-20528. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-20528 | Cisco Identity Services Engine Software up to 3.3.0 API path traversal (cisco-sa-ise-multi-vuln-DBQdWRy)

Post correlati

CVE-2020-24682 | B&R Industrial Automation Studio/NET PVI prior 4.9.4 SP unquoted search path

CVE-2024-2322 | WooCommerce Cart Abandonment Recovery Plugin up to 1.2.26 on WordPress Email Template cross-site request forgery

CVE-2024-25937 | Delta Electronics DIAEnergie up to 1.10.00.4 DIAE_tagHandler.ashx sql injection (icsa-24-074-12)

CVE-2024-6139 | parisneo lollms up to 9.6 tts_to_file path traversal