CVE-2024-20515 | Cisco Identity Services Engine Software 2.7.0 p8 up to 3.3.0 Web-based Management Interface missing encryption (cisco-sa-ise-info-disc-ZYF2nEEX)

Posted by Angelo Barbosa | Oct 2, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Cisco Identity Services Engine Software. Affected is an unknown function of the component Web-based Management Interface. The manipulation leads to missing encryption of sensitive data.

This vulnerability is traded as CVE-2024-20515. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-20515 | Cisco Identity Services Engine Software 2.7.0 p8 up to 3.3.0 Web-based Management Interface missing encryption (cisco-sa-ise-info-disc-ZYF2nEEX)

Related Posts

CVE-2023-46693 | FormaLMS up to 4.0.4 title cross site scripting

VDB-279050 | Backdoor.Win32.Benju.a missing authentication

CVE-2024-30883 | RageFrame2 2.6.43 aspectRatio cross site scripting (Issue 114)

CVE-2023-33068 | Qualcomm 7c+ Gen 3 Compute Audio memory corruption