Total vulnerabilities in the database
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) Software could allow an authenticated, remote attacker with administrative credentials to conduct a cross-site scripting (XSS) attack against a user of the interface. The vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the interface or access sensitive, browser-based information. To exploit this vulnerability, an attacker would need to have valid administrative credentials.
| Software | From | Fixed in |
|---|---|---|
| cisco / identity_services_engine | 2.4.0.357 | 2.4.0.357.x |
| cisco / identity_services_engine | 2.4.0.357-patch1 | 2.4.0.357-patch1.x |
| cisco / identity_services_engine | 2.4.0.357-patch2 | 2.4.0.357-patch2.x |
| cisco / identity_services_engine | 2.4.0.357-patch3 | 2.4.0.357-patch3.x |
| cisco / identity_services_engine | 2.4.0.357-patch4 | 2.4.0.357-patch4.x |
| cisco / identity_services_engine | 2.4.0.357-patch5 | 2.4.0.357-patch5.x |
| cisco / identity_services_engine | 2.4.0.357-patch6 | 2.4.0.357-patch6.x |
| cisco / identity_services_engine | 2.4.0.357-patch7 | 2.4.0.357-patch7.x |
| cisco / identity_services_engine | 2.4.0.357-patch8 | 2.4.0.357-patch8.x |
| cisco / identity_services_engine | 2.4.0.357-patch9 | 2.4.0.357-patch9.x |
| cisco / identity_services_engine | 2.3.0.298 | 2.3.0.298.x |
| cisco / identity_services_engine | 2.3.0.298-patch1 | 2.3.0.298-patch1.x |
| cisco / identity_services_engine | 2.3.0.298-patch2 | 2.3.0.298-patch2.x |
| cisco / identity_services_engine | 2.3.0.298-patch3 | 2.3.0.298-patch3.x |
| cisco / identity_services_engine | 2.3.0.298-patch4 | 2.3.0.298-patch4.x |
| cisco / identity_services_engine | 2.3.0.298-patch5 | 2.3.0.298-patch5.x |
| cisco / identity_services_engine | 2.3.0.298-patch6 | 2.3.0.298-patch6.x |
| cisco / identity_services_engine | 2.6.0-patch1 | 2.6.0-patch1.x |
| cisco / identity_services_engine | 2.6.0-patch2 | 2.6.0-patch2.x |
| cisco / identity_services_engine | 2.6.0-patch3 | 2.6.0-patch3.x |
| cisco / identity_services_engine | 2.2.0.470-patch1 | 2.2.0.470-patch1.x |
| cisco / identity_services_engine | 2.2.0.470-patch2 | 2.2.0.470-patch2.x |
| cisco / identity_services_engine | 2.2.0.470-patch3 | 2.2.0.470-patch3.x |
| cisco / identity_services_engine | 2.2.0.470-patch4 | 2.2.0.470-patch4.x |
| cisco / identity_services_engine | 2.2.0.470-patch5 | 2.2.0.470-patch5.x |
| cisco / identity_services_engine | 2.2.0.470-patch6 | 2.2.0.470-patch6.x |
| cisco / identity_services_engine | 2.2.0.470-patch7 | 2.2.0.470-patch7.x |
| cisco / identity_services_engine | 2.2.0.470-patch8 | 2.2.0.470-patch8.x |
| cisco / identity_services_engine | 2.2.0.470-patch9 | 2.2.0.470-patch9.x |
| cisco / identity_services_engine | 2.2.0.470-patch10 | 2.2.0.470-patch10.x |
| cisco / identity_services_engine | 2.2.0.470-patch11 | 2.2.0.470-patch11.x |
| cisco / identity_services_engine | 2.2.0.470-patch12 | 2.2.0.470-patch12.x |
| cisco / identity_services_engine | 2.6.0-patch6 | 2.6.0-patch6.x |
| cisco / identity_services_engine | 2.6.0-patch5 | 2.6.0-patch5.x |
| cisco / identity_services_engine | 2.6.0 | 2.6.0.x |
| cisco / identity_services_engine | 2.4.0-patch12 | 2.4.0-patch12.x |
| cisco / identity_services_engine | 2.3.0-patch7 | 2.3.0-patch7.x |
| cisco / identity_services_engine | 2.2.0-patch16 | 2.2.0-patch16.x |
| cisco / identity_services_engine | 2.6.0-patch7 | 2.6.0-patch7.x |
| cisco / identity_services_engine | 2.7.0-patch2 | 2.7.0-patch2.x |
| cisco / identity_services_engine | 2.2.0.470-patch13 | 2.2.0.470-patch13.x |
| cisco / identity_services_engine | 2.2.0.470-patch14 | 2.2.0.470-patch14.x |
| cisco / identity_services_engine | 2.2.0.470-patch15 | 2.2.0.470-patch15.x |
| cisco / identity_services_engine | 2.2.0.470-patch16 | 2.2.0.470-patch16.x |
| cisco / identity_services_engine | 2.3.0.298-patch7 | 2.3.0.298-patch7.x |
| cisco / identity_services_engine | 2.4.0.357-patch10 | 2.4.0.357-patch10.x |
| cisco / identity_services_engine | 2.6.0.156-patch7 | 2.6.0.156-patch7.x |
| cisco / identity_services_engine | 2.6.0.156-patch6 | 2.6.0.156-patch6.x |
| cisco / identity_services_engine | 2.6.0.156-patch5 | 2.6.0.156-patch5.x |
| cisco / identity_services_engine | 2.6.0.156-patch3 | 2.6.0.156-patch3.x |
| cisco / identity_services_engine | 2.6.0.156-patch2 | 2.6.0.156-patch2.x |
| cisco / identity_services_engine | 2.6.0.156-patch1 | 2.6.0.156-patch1.x |