CVE-2024-20528 | Cisco Identity Services Engine Software up to 3.3.0 API path traversal (cisco-sa-ise-multi-vuln-DBQdWRy)

Inserito da Angelo Barbosa | Nov 6, 2024 | CVE

A vulnerability classified as critical was found in Cisco Identity Services Engine Software. This vulnerability affects unknown code of the component API. The manipulation leads to path traversal.

This vulnerability was named CVE-2024-20528. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-20528 | Cisco Identity Services Engine Software up to 3.3.0 API path traversal (cisco-sa-ise-multi-vuln-DBQdWRy)

Post correlati

CVE-2024-33689 | Tony Zeoli & Tony Hayes Radio Station Plugin up to 2.5.7 on WordPress cross-site request forgery

CVE-2024-35206 | Siemens SINEC Traffic Analyzer up to 1.1 session expiration (ssa-196737)

CVE-2020-13879 | IrfanView up to 4.55 B3D PlugIns B3d.dll out-of-bounds write

CVE-2024-21908 | TinyMCE up to 5.8.x Editor cross site scripting