Search

Find a vulnerability

Search criteria

    310 vulnerabilities found for Cisco Identity Services Engine Software by Cisco

    CVE-2026-20190 (GCVE-0-2026-20190)

    Vulnerability from nvd – Published: 2026-06-17 16:17 – Updated: 2026-06-17 17:16
    VLAI
    Title
    Cisco Identity Services Engine Information Disclosure Vulnerability
    Summary
    A vulnerability in Cisco ISE and ISE-PIC could allow an unauthenticated, remote attacker to view sensitive information on an affected device. This vulnerability is due to improper authorization checks when a resource is accessed. An attacker could exploit this vulnerability by sending crafted traffic to an affected device. A successful exploit could allow the attacker to gain access to sensitive information, including hashed credentials that could be used in future attacks.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.4.0
    Affected: 3.4 Patch 1
    Affected: 3.4 Patch 2
    Affected: 3.4 Patch 3
    Affected: 3.5.0
    Affected: 3.4 Patch 4
    Affected: 3.5 Patch 1
    Affected: 3.4 Patch 5
    Affected: 3.5 Patch 2
    Create a notification for this product.
    Cisco Cisco ISE Passive Identity Connector Affected: 3.4.0
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20190",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-17T17:14:11.061077Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-17T17:16:45.425Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5.0"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 2"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco ISE Passive Identity Connector",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.4.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in Cisco ISE and ISE-PIC could allow an unauthenticated, remote attacker to view sensitive information on an affected device.\r\n\r\nThis vulnerability is due to improper authorization checks when a resource is accessed. An attacker could exploit this vulnerability by sending crafted traffic to an affected device. A successful exploit could allow the attacker to gain access to sensitive information, including hashed credentials that could be used in future attacks."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-285",
                  "description": "Improper Authorization",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-17T16:17:04.911Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-multi-G5WP8vv",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-multi-G5WP8vv"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-multi-G5WP8vv",
            "defects": [
              "CSCwt22936"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Identity Services Engine Information Disclosure Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20190",
        "datePublished": "2026-06-17T16:17:04.911Z",
        "dateReserved": "2025-10-08T11:59:15.395Z",
        "dateUpdated": "2026-06-17T17:16:45.425Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20181 (GCVE-0-2026-20181)

    Vulnerability from nvd – Published: 2026-06-17 16:16 – Updated: 2026-06-18 03:56
    VLAI
    Title
    Cisco Identity Services Engine Remote Code Execution Vulnerability
    Summary
    A vulnerability in Cisco ISE and ISE-PIC could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to root. In single-node deployments, successful exploitation of this vulnerability could cause the affected ISE node to become unavailable, resulting in a denial of service (DoS) condition. In that condition, endpoints that have not already authenticated would be unable to access the network until the node is restored.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.2.0
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.2.0 p1
    Affected: 3.1.0 p6
    Affected: 3.2.0 p2
    Affected: 3.1.0 p7
    Affected: 3.3.0
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.1.0 p8
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.1.0 p9
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.2.0 p7
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.1.0 p10
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.4 Patch 2
    Affected: 3.3 Patch 7
    Affected: 3.4 Patch 3
    Affected: 3.5.0
    Affected: 3.4 Patch 4
    Affected: 3.3 Patch 8
    Affected: 3.2 Patch 8
    Affected: 3.5 Patch 1
    Affected: 3.3 Patch 9
    Affected: 3.2 Patch 9
    Affected: 3.4 Patch 5
    Affected: 3.5 Patch 3
    Affected: 3.5 Patch 2
    Affected: 3.3 Patch 10
    Affected: 3.2 Patch 10
    Affected: 3.1.0 p11
    Create a notification for this product.
    Cisco Cisco ISE Passive Identity Connector Affected: 3.2.0
    Affected: 3.1.0
    Affected: 3.3.0
    Affected: 3.4.0
    Affected: 3.5.0
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20181",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-17T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-18T03:56:44.983Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5.0"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 8"
                },
                {
                  "status": "affected",
                  "version": "3.2 Patch 8"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 9"
                },
                {
                  "status": "affected",
                  "version": "3.2 Patch 9"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 10"
                },
                {
                  "status": "affected",
                  "version": "3.2 Patch 10"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p11"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco ISE Passive Identity Connector",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.5.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in Cisco ISE and ISE-PIC could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials.\r\n\r\nThis vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to root. In single-node deployments, successful exploitation of this vulnerability could cause the affected ISE node to become unavailable, resulting in a denial of service (DoS) condition. In that condition, endpoints that have not already authenticated would be unable to access the network until the node is restored."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.1,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-22",
                  "description": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-17T16:16:56.706Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-multi-G5WP8vv",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-multi-G5WP8vv"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-multi-G5WP8vv",
            "defects": [
              "CSCwt22913"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Identity Services Engine Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20181",
        "datePublished": "2026-06-17T16:16:56.706Z",
        "dateReserved": "2025-10-08T11:59:15.393Z",
        "dateUpdated": "2026-06-18T03:56:44.983Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20195 (GCVE-0-2026-20195)

    Vulnerability from nvd – Published: 2026-05-06 16:14 – Updated: 2026-05-06 17:48
    VLAI
    Title
    Cisco Identity Services Engine Observable Response Discrepancy Vulnerability
    Summary
    A vulnerability in an identity management API endpoint of Cisco ISE could allow an unauthenticated, remote attacker to enumerate valid user accounts on an affected device. This vulnerability exists because error messages are observed when the affected API endpoint is called. An attacker could exploit this vulnerability by sending a series of crafted requests to the affected endpoint and analyzing the differentiated responses. A successful exploit could allow the attacker to compile a list of valid usernames on an affected system.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-204 - Observable Response Discrepancy
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.3.0
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.4 Patch 2
    Affected: 3.3 Patch 7
    Affected: 3.4 Patch 3
    Affected: 3.5.0
    Affected: 3.4 Patch 4
    Affected: 3.3 Patch 8
    Affected: 3.5 Patch 1
    Affected: 3.3 Patch 9
    Affected: 3.4 Patch 5
    Affected: 3.5 Patch 3
    Affected: 3.5 Patch 2
    Affected: 3.3 Patch 10
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20195",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-06T17:34:47.638851Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-06T17:48:38.355Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5.0"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 8"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 9"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 10"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in an identity management API endpoint of Cisco ISE could allow an unauthenticated, remote attacker to enumerate valid user accounts on an affected device.\r\n\r\nThis vulnerability exists because error messages are observed when the affected API endpoint is called. An attacker could exploit this vulnerability by sending a series of crafted requests to the affected endpoint and analyzing the differentiated responses. A successful exploit could allow the attacker to compile a list of valid usernames on an affected system."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-204",
                  "description": "Observable Response Discrepancy",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-06T16:14:54.611Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-unauth-bypass-uxjRXGpb",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-unauth-bypass-uxjRXGpb"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-unauth-bypass-uxjRXGpb",
            "defects": [
              "CSCwr77445"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Identity Services Engine Observable Response Discrepancy Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20195",
        "datePublished": "2026-05-06T16:14:54.611Z",
        "dateReserved": "2025-10-08T11:59:15.396Z",
        "dateUpdated": "2026-05-06T17:48:38.355Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20193 (GCVE-0-2026-20193)

    Vulnerability from nvd – Published: 2026-05-06 16:15 – Updated: 2026-05-06 17:48
    VLAI
    Title
    Cisco Identity Services Engine Authentication Bypass Vulnerability
    Summary
    A vulnerability in the RADIUS Policy API endpoints of Cisco ISE could allow an authenticated, remote attacker with read-only Administrator privileges to gain unauthorized access to sensitive information on an affected device. This vulnerability is due to improper role-based access control (RBAC) permissions on the RADIUS Policy API endpoints. An attacker could exploit this vulnerability by bypassing the web-based management interface and directly calling an affected endpoint. A successful exploit could allow the attacker to gain unauthorized read access to sensitive RADIUS Policy details that are restricted for their role.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.3.0
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.4 Patch 2
    Affected: 3.3 Patch 7
    Affected: 3.4 Patch 3
    Affected: 3.5.0
    Affected: 3.4 Patch 4
    Affected: 3.3 Patch 8
    Affected: 3.5 Patch 1
    Affected: 3.3 Patch 9
    Affected: 3.4 Patch 5
    Affected: 3.5 Patch 3
    Affected: 3.5 Patch 2
    Affected: 3.3 Patch 10
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20193",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-06T17:35:13.146938Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-06T17:48:32.189Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5.0"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 8"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 9"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 10"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the RADIUS Policy API endpoints of Cisco ISE could allow an\u0026nbsp;authenticated, remote attacker with read-only Administrator privileges to gain unauthorized access to sensitive information on an affected device.\r\n\r\nThis vulnerability is due to improper role-based access control (RBAC) permissions on the RADIUS Policy API endpoints. An attacker could exploit this vulnerability by bypassing the web-based management interface and directly calling an affected endpoint. A successful exploit could allow the attacker to gain unauthorized\u0026nbsp;read access to sensitive RADIUS Policy details that are restricted for their role."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-862",
                  "description": "Missing Authorization",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-06T16:15:16.835Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-unauth-bypass-uxjRXGpb",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-unauth-bypass-uxjRXGpb"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-unauth-bypass-uxjRXGpb",
            "defects": [
              "CSCwr77441"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Identity Services Engine Authentication Bypass Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20193",
        "datePublished": "2026-05-06T16:15:16.835Z",
        "dateReserved": "2025-10-08T11:59:15.395Z",
        "dateUpdated": "2026-05-06T17:48:32.189Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20186 (GCVE-0-2026-20186)

    Vulnerability from nvd – Published: 2026-04-15 16:03 – Updated: 2026-04-16 03:55
    VLAI
    Title
    Cisco Identity Services Engine Multiple Authenticated Remote Code Execution Vulnerability
    Summary
    A vulnerability in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have at least Read Only Admin credentials. This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to root. In single-node ISE deployments, successful exploitation of these vulnerabilities could cause the affected ISE node to become unavailable, resulting in a denial of service (DoS) condition. In that condition, endpoints that have not already authenticated would be unable to access the network until the node is restored.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-77 - Improper Neutralization of Special Elements used in a Command ('Command Injection')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.2.0
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.2.0 p1
    Affected: 3.1.0 p6
    Affected: 3.2.0 p2
    Affected: 3.1.0 p7
    Affected: 3.3.0
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.1.0 p8
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.1.0 p9
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.2.0 p7
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.1.0 p10
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.4 Patch 2
    Affected: 3.3 Patch 7
    Affected: 3.4 Patch 3
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20186",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-15T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-16T03:55:36.590Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have at least Read Only Admin credentials.\r\n\r\nThis vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to\u0026nbsp;root. In single-node ISE deployments, successful exploitation of these vulnerabilities could cause the affected ISE node to become unavailable, resulting in a denial of service (DoS) condition. In that condition, endpoints that have not already authenticated would be unable to access the network until the node is restored."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.9,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-77",
                  "description": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-15T16:03:35.310Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-rce-4fverepv",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-rce-4fverepv"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-rce-4fverepv",
            "defects": [
              "CSCwq21242"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Identity Services Engine Multiple Authenticated Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20186",
        "datePublished": "2026-04-15T16:03:35.310Z",
        "dateReserved": "2025-10-08T11:59:15.394Z",
        "dateUpdated": "2026-04-16T03:55:36.590Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20180 (GCVE-0-2026-20180)

    Vulnerability from nvd – Published: 2026-04-15 16:03 – Updated: 2026-04-16 03:55
    VLAI
    Title
    Cisco Identity Services Engine Multiple Remote Code Execution Vulnerability
    Summary
    A vulnerability in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have at least Read Only Admin credentials. This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to root. In single-node ISE deployments, successful exploitation of these vulnerabilities could cause the affected ISE node to become unavailable, resulting in a denial of service (DoS) condition. In that condition, endpoints that have not already authenticated would be unable to access the network until the node is restored.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.2.0
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.2.0 p1
    Affected: 3.1.0 p6
    Affected: 3.2.0 p2
    Affected: 3.1.0 p7
    Affected: 3.3.0
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.1.0 p8
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.1.0 p9
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.2.0 p7
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.1.0 p10
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.4 Patch 2
    Affected: 3.3 Patch 7
    Affected: 3.4 Patch 3
    Affected: 3.5.0
    Affected: 3.2 Patch 8
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20180",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-15T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-16T03:55:33.630Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5.0"
                },
                {
                  "status": "affected",
                  "version": "3.2 Patch 8"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have at least Read Only Admin credentials.\r\n\r\nThis vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to\u0026nbsp;root. In single-node ISE deployments, successful exploitation of these vulnerabilities could cause the affected ISE node to become unavailable, resulting in a denial of service (DoS) condition. In that condition, endpoints that have not already authenticated would be unable to access the network until the node is restored."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.9,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-22",
                  "description": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-15T16:03:51.335Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-rce-4fverepv",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-rce-4fverepv"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-rce-4fverepv",
            "defects": [
              "CSCwq22993"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Identity Services Engine Multiple Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20180",
        "datePublished": "2026-04-15T16:03:51.335Z",
        "dateReserved": "2025-10-08T11:59:15.393Z",
        "dateUpdated": "2026-04-16T03:55:33.630Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20148 (GCVE-0-2026-20148)

    Vulnerability from nvd – Published: 2026-04-15 16:03 – Updated: 2026-04-15 16:56
    VLAI
    Title
    Cisco Identity Services Engine Path Traversal Vulnerability
    Summary
    A vulnerability in Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to perform path traversal attacks on the underlying operating system and read arbitrary files. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is due to improper validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected system. A successful exploit could allow the attacker to access sensitive files on the affected system.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.2.0
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.2.0 p1
    Affected: 3.1.0 p6
    Affected: 3.2.0 p2
    Affected: 3.1.0 p7
    Affected: 3.3.0
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.1.0 p8
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.1.0 p9
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.2.0 p7
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.1.0 p10
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.4 Patch 2
    Affected: 3.3 Patch 7
    Affected: 3.4 Patch 3
    Affected: 3.5.0
    Affected: 3.4 Patch 4
    Affected: 3.3 Patch 8
    Affected: 3.2 Patch 8
    Affected: 3.5 Patch 1
    Affected: 3.3 Patch 9
    Affected: 3.2 Patch 9
    Create a notification for this product.
    Cisco Cisco ISE Passive Identity Connector Affected: 3.2.0
    Affected: 3.1.0
    Affected: 3.3.0
    Affected: 3.4.0
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20148",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-15T16:50:58.114801Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-15T16:56:35.471Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5.0"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 8"
                },
                {
                  "status": "affected",
                  "version": "3.2 Patch 8"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 9"
                },
                {
                  "status": "affected",
                  "version": "3.2 Patch 9"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco ISE Passive Identity Connector",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to perform path traversal attacks on the underlying operating system and read arbitrary files. To exploit this vulnerability, the attacker must have valid administrative credentials.\r\n\r\nThis vulnerability is due to improper validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected system. A successful exploit could allow the attacker to access sensitive files on the affected system."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.9,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-22",
                  "description": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-15T16:03:31.727Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-rce-traversal-8bYndVrZ",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-rce-traversal-8bYndVrZ"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-rce-traversal-8bYndVrZ",
            "defects": [
              "CSCws52717"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Identity Services Engine Path Traversal Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20148",
        "datePublished": "2026-04-15T16:03:31.727Z",
        "dateReserved": "2025-10-08T11:59:15.385Z",
        "dateUpdated": "2026-04-15T16:56:35.471Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20147 (GCVE-0-2026-20147)

    Vulnerability from nvd – Published: 2026-04-15 16:03 – Updated: 2026-04-16 03:55
    VLAI
    Title
    Cisco Identity Services Engine Remote Code Execution Vulnerability
    Summary
    A vulnerability in Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to root. In single-node ISE deployments, successful exploitation of this vulnerability could cause the affected ISE node to become unavailable, resulting in a denial of service (DoS) condition. In that condition, endpoints that have not already authenticated would be unable to access the network until the node is restored.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-77 - Improper Neutralization of Special Elements used in a Command ('Command Injection')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.2.0
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.2.0 p1
    Affected: 3.1.0 p6
    Affected: 3.2.0 p2
    Affected: 3.1.0 p7
    Affected: 3.3.0
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.1.0 p8
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.1.0 p9
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.2.0 p7
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.1.0 p10
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.4 Patch 2
    Affected: 3.3 Patch 7
    Affected: 3.4 Patch 3
    Affected: 3.5.0
    Affected: 3.4 Patch 4
    Affected: 3.3 Patch 8
    Affected: 3.2 Patch 8
    Affected: 3.5 Patch 1
    Affected: 3.3 Patch 9
    Affected: 3.2 Patch 9
    Affected: 3.4 Patch 5
    Affected: 3.5 Patch 2
    Create a notification for this product.
    Cisco Cisco ISE Passive Identity Connector Affected: 3.2.0
    Affected: 3.1.0
    Affected: 3.3.0
    Affected: 3.4.0
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20147",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-15T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-16T03:55:35.113Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5.0"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 8"
                },
                {
                  "status": "affected",
                  "version": "3.2 Patch 8"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 9"
                },
                {
                  "status": "affected",
                  "version": "3.2 Patch 9"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 2"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco ISE Passive Identity Connector",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials.\r\n\r\nThis vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to root. In single-node ISE deployments, successful exploitation of this vulnerability could cause the affected ISE node to become unavailable, resulting in a denial of service (DoS) condition. In that condition, endpoints that have not already authenticated would be unable to access the network until the node is restored."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.9,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-77",
                  "description": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-15T16:03:25.648Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-rce-traversal-8bYndVrZ",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-rce-traversal-8bYndVrZ"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-rce-traversal-8bYndVrZ",
            "defects": [
              "CSCws52738"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Identity Services Engine Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20147",
        "datePublished": "2026-04-15T16:03:25.648Z",
        "dateReserved": "2025-10-08T11:59:15.385Z",
        "dateUpdated": "2026-04-16T03:55:35.113Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20136 (GCVE-0-2026-20136)

    Vulnerability from nvd – Published: 2026-04-15 16:11 – Updated: 2026-04-16 03:55
    VLAI
    Title
    Cisco Identity Services Engine Authenticated Privilege Escalation Vulnerability
    Summary
    A vulnerability in the CLI of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, local attacker with administrative privileges to perform a command injection attack on the underlying operating system and elevate privileges to root. This vulnerability is due to insufficient validation of user supplied input. An attacker could exploit this vulnerability by providing crafted input to a specific CLI command. A successful exploit could allow the attacker to elevate their privileges to root on the underlying operating system.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-116 - Improper Encoding or Escaping of Output
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.2.0
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.2.0 p1
    Affected: 3.1.0 p6
    Affected: 3.2.0 p2
    Affected: 3.1.0 p7
    Affected: 3.3.0
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.1.0 p8
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.1.0 p9
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.2.0 p7
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.1.0 p10
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.4 Patch 2
    Affected: 3.3 Patch 7
    Affected: 3.4 Patch 3
    Affected: 3.5.0
    Affected: 3.4 Patch 4
    Affected: 3.3 Patch 8
    Affected: 3.2 Patch 8
    Affected: 3.5 Patch 1
    Affected: 3.3 Patch 9
    Affected: 3.2 Patch 9
    Affected: 3.4 Patch 5
    Affected: 3.5 Patch 2
    Affected: 3.3 Patch 10
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20136",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-15T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-16T03:55:30.918Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5.0"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 8"
                },
                {
                  "status": "affected",
                  "version": "3.2 Patch 8"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 9"
                },
                {
                  "status": "affected",
                  "version": "3.2 Patch 9"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 10"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the\u0026nbsp;CLI of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, local attacker with administrative privileges to perform a command injection attack on the underlying operating system and elevate privileges to root.\r\n\r\nThis vulnerability is due to insufficient validation of user supplied input. An attacker could exploit this vulnerability by providing crafted input to a specific CLI command. A successful exploit could allow the attacker to elevate their privileges to root on the underlying operating system."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 6,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-116",
                  "description": "Improper Encoding or Escaping of Output",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-15T16:11:29.398Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-cmd-inj-5WSJcYJB",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-cmd-inj-5WSJcYJB"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-cmd-inj-5WSJcYJB",
            "defects": [
              "CSCwp98770"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Identity Services Engine Authenticated Privilege Escalation Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20136",
        "datePublished": "2026-04-15T16:11:29.398Z",
        "dateReserved": "2025-10-08T11:59:15.381Z",
        "dateUpdated": "2026-04-16T03:55:30.918Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20132 (GCVE-0-2026-20132)

    Vulnerability from nvd – Published: 2026-04-15 16:03 – Updated: 2026-04-15 17:06
    VLAI
    Title
    Cisco Identity Services Engine Multiple Cross-Site Scripting Vulnerabilities
    Summary
    Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker with administrative write privileges to conduct a stored cross-site scripting (XSS) attack or a reflected XSS attack against a user of the web-based management interface of an affected device. These vulnerabilities are due to insufficient sanitization of user-supplied data that is stored in the web page. An attacker could exploit these vulnerabilities by convincing a user of the interface to click a specific link or view an affected web page. The injected script code may be executed in the context of the web-based management interface or allow the attacker to access sensitive browser-based information.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.2.0
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.2.0 p1
    Affected: 3.1.0 p6
    Affected: 3.2.0 p2
    Affected: 3.1.0 p7
    Affected: 3.3.0
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.1.0 p8
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.1.0 p9
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.2.0 p7
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.1.0 p10
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20132",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-15T16:53:55.291064Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-15T17:06:38.222Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker with administrative\u0026nbsp;write privileges to conduct a stored cross-site scripting (XSS) attack or a reflected XSS attack against a user of the web-based management interface of an affected device.\r\n\r\nThese vulnerabilities are due to insufficient sanitization of user-supplied data that is stored in the web page. An attacker could exploit these vulnerabilities by convincing a user of the interface to click a specific link or view an affected web page. The injected script code may be executed in the context of the web-based management interface or allow the attacker to access sensitive browser-based information."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "HIGH",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-15T16:03:14.842Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-isexss-BS8ctE7U",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-isexss-BS8ctE7U"
            }
          ],
          "source": {
            "advisory": "cisco-sa-isexss-BS8ctE7U",
            "defects": [
              "CSCwn87479"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Identity Services Engine Multiple Cross-Site Scripting Vulnerabilities"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20132",
        "datePublished": "2026-04-15T16:03:14.842Z",
        "dateReserved": "2025-10-08T11:59:15.380Z",
        "dateUpdated": "2026-04-15T17:06:38.222Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20076 (GCVE-0-2026-20076)

    Vulnerability from nvd – Published: 2026-01-15 16:32 – Updated: 2026-02-26 15:04
    VLAI
    Title
    Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability
    Summary
    A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affected system. An attacker could exploit this vulnerability by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. To exploit this vulnerability, the attacker must have valid administrative credentials.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.2.0
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.2.0 p1
    Affected: 3.1.0 p6
    Affected: 3.2.0 p2
    Affected: 3.1.0 p7
    Affected: 3.3.0
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.1.0 p8
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.1.0 p9
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.2.0 p7
    Affected: 3.3 Patch 4
    Affected: 3.1.0 p10
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20076",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-01-16T04:55:54.779379Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T15:04:07.360Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface.\r\n\r\nThis vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affected system. An attacker could exploit this vulnerability by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. To exploit this vulnerability, the attacker must have valid administrative credentials."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "HIGH",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-15T16:32:03.744Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-xss-9TDh2kx",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-xss-9TDh2kx"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-xss-9TDh2kx",
            "defects": [
              "CSCwk20177"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20076",
        "datePublished": "2026-01-15T16:32:03.744Z",
        "dateReserved": "2025-10-08T11:59:15.362Z",
        "dateUpdated": "2026-02-26T15:04:07.360Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20047 (GCVE-0-2026-20047)

    Vulnerability from nvd – Published: 2026-01-15 16:32 – Updated: 2026-02-26 15:04
    VLAI
    Title
    Cisco Identity Services Engine Cross-Site Scripting Vulnerability
    Summary
    A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affected system. An attacker could exploit this vulnerability by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. To exploit this vulnerability, the attacker must have valid administrative credentials.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-80 - Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.2.0
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.2.0 p1
    Affected: 3.1.0 p6
    Affected: 3.2.0 p2
    Affected: 3.1.0 p7
    Affected: 3.3.0
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.1.0 p8
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.1.0 p9
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.2.0 p7
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.1.0 p10
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.4 Patch 2
    Affected: 3.3 Patch 7
    Affected: 3.4 Patch 3
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20047",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-01-16T04:55:53.641286Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T15:04:06.757Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the interface.\r\n\r\nThis vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affected system. An attacker could exploit this vulnerability by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. To exploit this vulnerability, the attacker must have valid administrative credentials."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "HIGH",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-80",
                  "description": "Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-15T16:32:15.578Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-xss-964cdxW5",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-xss-964cdxW5"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-xss-964cdxW5",
            "defects": [
              "CSCwq83752"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Identity Services Engine Cross-Site Scripting Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20047",
        "datePublished": "2026-01-15T16:32:15.578Z",
        "dateReserved": "2025-10-08T11:59:15.355Z",
        "dateUpdated": "2026-02-26T15:04:06.757Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20029 (GCVE-0-2026-20029)

    Vulnerability from nvd – Published: 2026-01-07 16:23 – Updated: 2026-01-07 16:40
    VLAI
    Title
    Cisco Identity Services Engine XML External Entity Processing Information Disclosure Vulnerability
    Summary
    A vulnerability in the licensing features of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, remote attacker with administrative privileges to gain access to sensitive information.  This vulnerability is due to improper parsing of XML that is processed by the web-based management interface of Cisco ISE and Cisco ISE-PIC. An attacker could exploit this vulnerability by uploading a malicious file to the application. A successful exploit could allow the attacker to read arbitrary files from the underlying operating system that could include sensitive data that should otherwise be inaccessible even to administrators. To exploit this vulnerability, the attacker must have valid administrative credentials.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-611 - Improper Restriction of XML External Entity Reference
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.2.0
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.2.0 p1
    Affected: 3.1.0 p6
    Affected: 3.2.0 p2
    Affected: 3.1.0 p7
    Affected: 3.3.0
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.1.0 p8
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.1.0 p9
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.2.0 p7
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.1.0 p10
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.4 Patch 2
    Affected: 3.3 Patch 7
    Affected: 3.4 Patch 3
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20029",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-01-07T16:40:33.564050Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-01-07T16:40:58.555Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the licensing features of\u0026nbsp;Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, remote attacker with administrative privileges to gain access to sensitive information.\u0026nbsp;\r\n\r\nThis vulnerability is due to improper parsing of XML that is processed by the web-based management interface of Cisco ISE and Cisco ISE-PIC. An attacker could exploit this vulnerability by uploading a malicious file to the application. A successful exploit could allow the attacker to read arbitrary files from the underlying operating system that could include sensitive data that should otherwise be inaccessible even to administrators. To exploit this vulnerability, the attacker must have valid administrative credentials."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is aware that proof-of-concept exploit code is available for the vulnerability described in this advisory.\r\n\r\nThe Cisco PSIRT is not aware of any malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.9,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-611",
                  "description": "Improper Restriction of XML External Entity Reference",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-07T16:23:43.372Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-xxe-jWSbSDKt",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-xxe-jWSbSDKt"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-xxe-jWSbSDKt",
            "defects": [
              "CSCwq79739"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Identity Services Engine XML External Entity Processing Information Disclosure Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20029",
        "datePublished": "2026-01-07T16:23:43.372Z",
        "dateReserved": "2025-10-08T11:59:15.353Z",
        "dateUpdated": "2026-01-07T16:40:58.555Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-20343 (GCVE-0-2025-20343)

    Vulnerability from nvd – Published: 2025-11-05 16:31 – Updated: 2025-11-05 20:07
    VLAI
    Title
    Cisco Identity Services Engine Radius Suppression Denial of Service Vulnerability
    Summary
    A vulnerability in the RADIUS setting Reject RADIUS requests from clients with repeated failures on Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to cause Cisco ISE to restart unexpectedly. This vulnerability is due to a logic error when processing a RADIUS access request for a MAC address that is already a rejected endpoint. An attacker could exploit this vulnerability by sending a specific sequence of multiple crafted RADIUS access request messages to Cisco ISE. A successful exploit could allow the attacker to cause a denial of service (DoS) condition when Cisco ISE restarts.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.4.0
    Affected: 3.4 Patch 1
    Affected: 3.4 Patch 2
    Affected: 3.4 Patch 3
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-20343",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-05T20:06:45.616639Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-05T20:07:12.870Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the RADIUS setting Reject RADIUS requests from clients with repeated failures on Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to cause Cisco ISE to restart unexpectedly.\r\n\r\nThis vulnerability is due to a logic error when processing a RADIUS access request for a MAC address that is already a rejected endpoint. An attacker could exploit this vulnerability by sending a specific sequence of multiple crafted RADIUS access request messages to Cisco ISE. A successful exploit could allow the attacker to cause a denial of service (DoS) condition when Cisco ISE restarts."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-697",
                  "description": "Incorrect Comparison",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-11-05T16:31:05.000Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-radsupress-dos-8YF3JThh",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-radsupress-dos-8YF3JThh"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-radsupress-dos-8YF3JThh",
            "defects": [
              "CSCwq27605"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Identity Services Engine Radius Suppression Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2025-20343",
        "datePublished": "2025-11-05T16:31:05.000Z",
        "dateReserved": "2024-10-10T19:15:13.256Z",
        "dateUpdated": "2025-11-05T20:07:12.870Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-20305 (GCVE-0-2025-20305)

    Vulnerability from nvd – Published: 2025-11-05 16:32 – Updated: 2025-12-04 20:41
    VLAI
    Summary
    A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated, remote attacker to obtain sensitive information from an affected device. This vulnerability exists because certain files lack proper data protection mechanisms. An attacker with read-only Administrator privileges could exploit this vulnerability by performing actions where the results should only be viewable to a high-privileged user. A successful exploit could allow the attacker to view passwords that are normally not visible to read-only administrators.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-1220 - Insufficient Granularity of Access Control
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.1.0 p6
    Affected: 3.1.0 p7
    Affected: 3.1.0 p8
    Affected: 3.1.0 p9
    Affected: 3.1.0 p10
    Affected: 3.2.0
    Affected: 3.2.0 p1
    Affected: 3.2.0 p2
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.2.0 p7
    Affected: 3.3.0
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.3 Patch 4
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.3 Patch 7
    Affected: 3.4.0
    Affected: 3.4 Patch 1
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-20305",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-05T20:19:22.682276Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-05T20:19:33.833Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated, remote attacker to obtain sensitive information from an affected device.\r\n\r This vulnerability exists because certain files lack proper data protection mechanisms. An attacker with read-only Administrator privileges could exploit this vulnerability by performing actions where the results should only be viewable to a high-privileged user. A successful exploit could allow the attacker to view passwords that are normally not visible to read-only administrators."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-1220",
                  "description": "Insufficient Granularity of Access Control",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-12-04T20:41:27.628Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-multiple-vulns-O9BESWJH",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-multiple-vulns-O9BESWJH"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-multiple-vulns-O9BESWJH",
            "defects": [
              "CSCwo37181"
            ],
            "discovery": "EXTERNAL"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2025-20305",
        "datePublished": "2025-11-05T16:32:52.800Z",
        "dateReserved": "2024-10-10T19:15:13.252Z",
        "dateUpdated": "2025-12-04T20:41:27.628Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-20304 (GCVE-0-2025-20304)

    Vulnerability from nvd – Published: 2025-11-05 16:33 – Updated: 2025-12-04 20:41
    VLAI
    Summary
    Multiple vulnerabilities in the web-based management interface of Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to conduct a reflected XSS attack against a user of the interface. These vulnerabilities are due to insufficient validation of user-supplied input by the web-based management interface of an affected system. An attacker could exploit these vulnerabilities by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. To exploit these vulnerabilities, the attacker must have at least a low-privileged account on the affected device.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.1.0 p6
    Affected: 3.1.0 p7
    Affected: 3.1.0 p8
    Affected: 3.1.0 p9
    Affected: 3.1.0 p10
    Affected: 3.2.0
    Affected: 3.2.0 p1
    Affected: 3.2.0 p2
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.2.0 p7
    Affected: 3.3.0
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.3 Patch 4
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.3 Patch 7
    Affected: 3.4.0
    Affected: 3.4 Patch 1
    Affected: 3.4 Patch 2
    Affected: 3.4 Patch 3
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-20304",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-05T20:19:56.586902Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-05T20:20:07.804Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple vulnerabilities in the web-based management interface of Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to conduct a reflected XSS attack against a user of the interface.\r\n\r These vulnerabilities are due to insufficient validation of user-supplied input by the web-based management interface of an affected system. An attacker could exploit these vulnerabilities by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. To exploit these vulnerabilities, the attacker must have at least a low-privileged account on the affected device."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-12-04T20:41:09.536Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-multiple-vulns-O9BESWJH",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-multiple-vulns-O9BESWJH"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-multiple-vulns-O9BESWJH",
            "defects": [
              "CSCwo37216"
            ],
            "discovery": "EXTERNAL"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2025-20304",
        "datePublished": "2025-11-05T16:33:27.573Z",
        "dateReserved": "2024-10-10T19:15:13.252Z",
        "dateUpdated": "2025-12-04T20:41:09.536Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-20303 (GCVE-0-2025-20303)

    Vulnerability from nvd – Published: 2025-11-05 16:32 – Updated: 2025-12-04 20:41
    VLAI
    Summary
    Multiple vulnerabilities in the web-based management interface of Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to conduct a reflected XSS attack against a user of the interface. These vulnerabilities are due to insufficient validation of user-supplied input by the web-based management interface of an affected system. An attacker could exploit these vulnerabilities by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. To exploit these vulnerabilities, the attacker must have at least a low-privileged account on the affected device.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.1.0 p6
    Affected: 3.1.0 p7
    Affected: 3.1.0 p8
    Affected: 3.1.0 p9
    Affected: 3.1.0 p10
    Affected: 3.2.0
    Affected: 3.2.0 p1
    Affected: 3.2.0 p2
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.2.0 p7
    Affected: 3.3.0
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.3 Patch 4
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.3 Patch 7
    Affected: 3.4.0
    Affected: 3.4 Patch 1
    Affected: 3.4 Patch 2
    Affected: 3.4 Patch 3
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-20303",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-05T20:16:57.119152Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-05T20:17:21.630Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple vulnerabilities in the web-based management interface of Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to conduct a reflected XSS attack against a user of the interface.\r\n\r These vulnerabilities are due to insufficient validation of user-supplied input by the web-based management interface of an affected system. An attacker could exploit these vulnerabilities by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. To exploit these vulnerabilities, the attacker must have at least a low-privileged account on the affected device."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-12-04T20:41:38.708Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-multiple-vulns-O9BESWJH",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-multiple-vulns-O9BESWJH"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-multiple-vulns-O9BESWJH",
            "defects": [
              "CSCwo37218"
            ],
            "discovery": "EXTERNAL"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2025-20303",
        "datePublished": "2025-11-05T16:32:02.482Z",
        "dateReserved": "2024-10-10T19:15:13.252Z",
        "dateUpdated": "2025-12-04T20:41:38.708Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20190 (GCVE-0-2026-20190)

    Vulnerability from cvelistv5 – Published: 2026-06-17 16:17 – Updated: 2026-06-17 17:16
    VLAI
    Title
    Cisco Identity Services Engine Information Disclosure Vulnerability
    Summary
    A vulnerability in Cisco ISE and ISE-PIC could allow an unauthenticated, remote attacker to view sensitive information on an affected device. This vulnerability is due to improper authorization checks when a resource is accessed. An attacker could exploit this vulnerability by sending crafted traffic to an affected device. A successful exploit could allow the attacker to gain access to sensitive information, including hashed credentials that could be used in future attacks.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.4.0
    Affected: 3.4 Patch 1
    Affected: 3.4 Patch 2
    Affected: 3.4 Patch 3
    Affected: 3.5.0
    Affected: 3.4 Patch 4
    Affected: 3.5 Patch 1
    Affected: 3.4 Patch 5
    Affected: 3.5 Patch 2
    Create a notification for this product.
    Cisco Cisco ISE Passive Identity Connector Affected: 3.4.0
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20190",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-17T17:14:11.061077Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-17T17:16:45.425Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5.0"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 2"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco ISE Passive Identity Connector",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.4.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in Cisco ISE and ISE-PIC could allow an unauthenticated, remote attacker to view sensitive information on an affected device.\r\n\r\nThis vulnerability is due to improper authorization checks when a resource is accessed. An attacker could exploit this vulnerability by sending crafted traffic to an affected device. A successful exploit could allow the attacker to gain access to sensitive information, including hashed credentials that could be used in future attacks."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-285",
                  "description": "Improper Authorization",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-17T16:17:04.911Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-multi-G5WP8vv",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-multi-G5WP8vv"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-multi-G5WP8vv",
            "defects": [
              "CSCwt22936"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Identity Services Engine Information Disclosure Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20190",
        "datePublished": "2026-06-17T16:17:04.911Z",
        "dateReserved": "2025-10-08T11:59:15.395Z",
        "dateUpdated": "2026-06-17T17:16:45.425Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20181 (GCVE-0-2026-20181)

    Vulnerability from cvelistv5 – Published: 2026-06-17 16:16 – Updated: 2026-06-18 03:56
    VLAI
    Title
    Cisco Identity Services Engine Remote Code Execution Vulnerability
    Summary
    A vulnerability in Cisco ISE and ISE-PIC could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to root. In single-node deployments, successful exploitation of this vulnerability could cause the affected ISE node to become unavailable, resulting in a denial of service (DoS) condition. In that condition, endpoints that have not already authenticated would be unable to access the network until the node is restored.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.2.0
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.2.0 p1
    Affected: 3.1.0 p6
    Affected: 3.2.0 p2
    Affected: 3.1.0 p7
    Affected: 3.3.0
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.1.0 p8
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.1.0 p9
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.2.0 p7
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.1.0 p10
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.4 Patch 2
    Affected: 3.3 Patch 7
    Affected: 3.4 Patch 3
    Affected: 3.5.0
    Affected: 3.4 Patch 4
    Affected: 3.3 Patch 8
    Affected: 3.2 Patch 8
    Affected: 3.5 Patch 1
    Affected: 3.3 Patch 9
    Affected: 3.2 Patch 9
    Affected: 3.4 Patch 5
    Affected: 3.5 Patch 3
    Affected: 3.5 Patch 2
    Affected: 3.3 Patch 10
    Affected: 3.2 Patch 10
    Affected: 3.1.0 p11
    Create a notification for this product.
    Cisco Cisco ISE Passive Identity Connector Affected: 3.2.0
    Affected: 3.1.0
    Affected: 3.3.0
    Affected: 3.4.0
    Affected: 3.5.0
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20181",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-17T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-18T03:56:44.983Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5.0"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 8"
                },
                {
                  "status": "affected",
                  "version": "3.2 Patch 8"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 9"
                },
                {
                  "status": "affected",
                  "version": "3.2 Patch 9"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 10"
                },
                {
                  "status": "affected",
                  "version": "3.2 Patch 10"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p11"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco ISE Passive Identity Connector",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.5.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in Cisco ISE and ISE-PIC could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials.\r\n\r\nThis vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to root. In single-node deployments, successful exploitation of this vulnerability could cause the affected ISE node to become unavailable, resulting in a denial of service (DoS) condition. In that condition, endpoints that have not already authenticated would be unable to access the network until the node is restored."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.1,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-22",
                  "description": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-17T16:16:56.706Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-multi-G5WP8vv",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-multi-G5WP8vv"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-multi-G5WP8vv",
            "defects": [
              "CSCwt22913"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Identity Services Engine Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20181",
        "datePublished": "2026-06-17T16:16:56.706Z",
        "dateReserved": "2025-10-08T11:59:15.393Z",
        "dateUpdated": "2026-06-18T03:56:44.983Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20193 (GCVE-0-2026-20193)

    Vulnerability from cvelistv5 – Published: 2026-05-06 16:15 – Updated: 2026-05-06 17:48
    VLAI
    Title
    Cisco Identity Services Engine Authentication Bypass Vulnerability
    Summary
    A vulnerability in the RADIUS Policy API endpoints of Cisco ISE could allow an authenticated, remote attacker with read-only Administrator privileges to gain unauthorized access to sensitive information on an affected device. This vulnerability is due to improper role-based access control (RBAC) permissions on the RADIUS Policy API endpoints. An attacker could exploit this vulnerability by bypassing the web-based management interface and directly calling an affected endpoint. A successful exploit could allow the attacker to gain unauthorized read access to sensitive RADIUS Policy details that are restricted for their role.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.3.0
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.4 Patch 2
    Affected: 3.3 Patch 7
    Affected: 3.4 Patch 3
    Affected: 3.5.0
    Affected: 3.4 Patch 4
    Affected: 3.3 Patch 8
    Affected: 3.5 Patch 1
    Affected: 3.3 Patch 9
    Affected: 3.4 Patch 5
    Affected: 3.5 Patch 3
    Affected: 3.5 Patch 2
    Affected: 3.3 Patch 10
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20193",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-06T17:35:13.146938Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-06T17:48:32.189Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5.0"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 8"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 9"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 10"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the RADIUS Policy API endpoints of Cisco ISE could allow an\u0026nbsp;authenticated, remote attacker with read-only Administrator privileges to gain unauthorized access to sensitive information on an affected device.\r\n\r\nThis vulnerability is due to improper role-based access control (RBAC) permissions on the RADIUS Policy API endpoints. An attacker could exploit this vulnerability by bypassing the web-based management interface and directly calling an affected endpoint. A successful exploit could allow the attacker to gain unauthorized\u0026nbsp;read access to sensitive RADIUS Policy details that are restricted for their role."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-862",
                  "description": "Missing Authorization",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-06T16:15:16.835Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-unauth-bypass-uxjRXGpb",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-unauth-bypass-uxjRXGpb"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-unauth-bypass-uxjRXGpb",
            "defects": [
              "CSCwr77441"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Identity Services Engine Authentication Bypass Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20193",
        "datePublished": "2026-05-06T16:15:16.835Z",
        "dateReserved": "2025-10-08T11:59:15.395Z",
        "dateUpdated": "2026-05-06T17:48:32.189Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20195 (GCVE-0-2026-20195)

    Vulnerability from cvelistv5 – Published: 2026-05-06 16:14 – Updated: 2026-05-06 17:48
    VLAI
    Title
    Cisco Identity Services Engine Observable Response Discrepancy Vulnerability
    Summary
    A vulnerability in an identity management API endpoint of Cisco ISE could allow an unauthenticated, remote attacker to enumerate valid user accounts on an affected device. This vulnerability exists because error messages are observed when the affected API endpoint is called. An attacker could exploit this vulnerability by sending a series of crafted requests to the affected endpoint and analyzing the differentiated responses. A successful exploit could allow the attacker to compile a list of valid usernames on an affected system.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-204 - Observable Response Discrepancy
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.3.0
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.4 Patch 2
    Affected: 3.3 Patch 7
    Affected: 3.4 Patch 3
    Affected: 3.5.0
    Affected: 3.4 Patch 4
    Affected: 3.3 Patch 8
    Affected: 3.5 Patch 1
    Affected: 3.3 Patch 9
    Affected: 3.4 Patch 5
    Affected: 3.5 Patch 3
    Affected: 3.5 Patch 2
    Affected: 3.3 Patch 10
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20195",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-06T17:34:47.638851Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-06T17:48:38.355Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5.0"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 8"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 9"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 10"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in an identity management API endpoint of Cisco ISE could allow an unauthenticated, remote attacker to enumerate valid user accounts on an affected device.\r\n\r\nThis vulnerability exists because error messages are observed when the affected API endpoint is called. An attacker could exploit this vulnerability by sending a series of crafted requests to the affected endpoint and analyzing the differentiated responses. A successful exploit could allow the attacker to compile a list of valid usernames on an affected system."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-204",
                  "description": "Observable Response Discrepancy",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-06T16:14:54.611Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-unauth-bypass-uxjRXGpb",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-unauth-bypass-uxjRXGpb"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-unauth-bypass-uxjRXGpb",
            "defects": [
              "CSCwr77445"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Identity Services Engine Observable Response Discrepancy Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20195",
        "datePublished": "2026-05-06T16:14:54.611Z",
        "dateReserved": "2025-10-08T11:59:15.396Z",
        "dateUpdated": "2026-05-06T17:48:38.355Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20136 (GCVE-0-2026-20136)

    Vulnerability from cvelistv5 – Published: 2026-04-15 16:11 – Updated: 2026-04-16 03:55
    VLAI
    Title
    Cisco Identity Services Engine Authenticated Privilege Escalation Vulnerability
    Summary
    A vulnerability in the CLI of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, local attacker with administrative privileges to perform a command injection attack on the underlying operating system and elevate privileges to root. This vulnerability is due to insufficient validation of user supplied input. An attacker could exploit this vulnerability by providing crafted input to a specific CLI command. A successful exploit could allow the attacker to elevate their privileges to root on the underlying operating system.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-116 - Improper Encoding or Escaping of Output
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.2.0
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.2.0 p1
    Affected: 3.1.0 p6
    Affected: 3.2.0 p2
    Affected: 3.1.0 p7
    Affected: 3.3.0
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.1.0 p8
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.1.0 p9
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.2.0 p7
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.1.0 p10
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.4 Patch 2
    Affected: 3.3 Patch 7
    Affected: 3.4 Patch 3
    Affected: 3.5.0
    Affected: 3.4 Patch 4
    Affected: 3.3 Patch 8
    Affected: 3.2 Patch 8
    Affected: 3.5 Patch 1
    Affected: 3.3 Patch 9
    Affected: 3.2 Patch 9
    Affected: 3.4 Patch 5
    Affected: 3.5 Patch 2
    Affected: 3.3 Patch 10
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20136",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-15T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-16T03:55:30.918Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5.0"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 8"
                },
                {
                  "status": "affected",
                  "version": "3.2 Patch 8"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 9"
                },
                {
                  "status": "affected",
                  "version": "3.2 Patch 9"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 10"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the\u0026nbsp;CLI of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, local attacker with administrative privileges to perform a command injection attack on the underlying operating system and elevate privileges to root.\r\n\r\nThis vulnerability is due to insufficient validation of user supplied input. An attacker could exploit this vulnerability by providing crafted input to a specific CLI command. A successful exploit could allow the attacker to elevate their privileges to root on the underlying operating system."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 6,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-116",
                  "description": "Improper Encoding or Escaping of Output",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-15T16:11:29.398Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-cmd-inj-5WSJcYJB",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-cmd-inj-5WSJcYJB"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-cmd-inj-5WSJcYJB",
            "defects": [
              "CSCwp98770"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Identity Services Engine Authenticated Privilege Escalation Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20136",
        "datePublished": "2026-04-15T16:11:29.398Z",
        "dateReserved": "2025-10-08T11:59:15.381Z",
        "dateUpdated": "2026-04-16T03:55:30.918Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20180 (GCVE-0-2026-20180)

    Vulnerability from cvelistv5 – Published: 2026-04-15 16:03 – Updated: 2026-04-16 03:55
    VLAI
    Title
    Cisco Identity Services Engine Multiple Remote Code Execution Vulnerability
    Summary
    A vulnerability in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have at least Read Only Admin credentials. This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to root. In single-node ISE deployments, successful exploitation of these vulnerabilities could cause the affected ISE node to become unavailable, resulting in a denial of service (DoS) condition. In that condition, endpoints that have not already authenticated would be unable to access the network until the node is restored.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.2.0
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.2.0 p1
    Affected: 3.1.0 p6
    Affected: 3.2.0 p2
    Affected: 3.1.0 p7
    Affected: 3.3.0
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.1.0 p8
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.1.0 p9
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.2.0 p7
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.1.0 p10
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.4 Patch 2
    Affected: 3.3 Patch 7
    Affected: 3.4 Patch 3
    Affected: 3.5.0
    Affected: 3.2 Patch 8
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20180",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-15T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-16T03:55:33.630Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5.0"
                },
                {
                  "status": "affected",
                  "version": "3.2 Patch 8"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have at least Read Only Admin credentials.\r\n\r\nThis vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to\u0026nbsp;root. In single-node ISE deployments, successful exploitation of these vulnerabilities could cause the affected ISE node to become unavailable, resulting in a denial of service (DoS) condition. In that condition, endpoints that have not already authenticated would be unable to access the network until the node is restored."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.9,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-22",
                  "description": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-15T16:03:51.335Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-rce-4fverepv",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-rce-4fverepv"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-rce-4fverepv",
            "defects": [
              "CSCwq22993"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Identity Services Engine Multiple Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20180",
        "datePublished": "2026-04-15T16:03:51.335Z",
        "dateReserved": "2025-10-08T11:59:15.393Z",
        "dateUpdated": "2026-04-16T03:55:33.630Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20186 (GCVE-0-2026-20186)

    Vulnerability from cvelistv5 – Published: 2026-04-15 16:03 – Updated: 2026-04-16 03:55
    VLAI
    Title
    Cisco Identity Services Engine Multiple Authenticated Remote Code Execution Vulnerability
    Summary
    A vulnerability in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have at least Read Only Admin credentials. This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to root. In single-node ISE deployments, successful exploitation of these vulnerabilities could cause the affected ISE node to become unavailable, resulting in a denial of service (DoS) condition. In that condition, endpoints that have not already authenticated would be unable to access the network until the node is restored.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-77 - Improper Neutralization of Special Elements used in a Command ('Command Injection')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.2.0
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.2.0 p1
    Affected: 3.1.0 p6
    Affected: 3.2.0 p2
    Affected: 3.1.0 p7
    Affected: 3.3.0
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.1.0 p8
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.1.0 p9
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.2.0 p7
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.1.0 p10
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.4 Patch 2
    Affected: 3.3 Patch 7
    Affected: 3.4 Patch 3
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20186",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-15T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-16T03:55:36.590Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have at least Read Only Admin credentials.\r\n\r\nThis vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to\u0026nbsp;root. In single-node ISE deployments, successful exploitation of these vulnerabilities could cause the affected ISE node to become unavailable, resulting in a denial of service (DoS) condition. In that condition, endpoints that have not already authenticated would be unable to access the network until the node is restored."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.9,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-77",
                  "description": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-15T16:03:35.310Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-rce-4fverepv",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-rce-4fverepv"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-rce-4fverepv",
            "defects": [
              "CSCwq21242"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Identity Services Engine Multiple Authenticated Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20186",
        "datePublished": "2026-04-15T16:03:35.310Z",
        "dateReserved": "2025-10-08T11:59:15.394Z",
        "dateUpdated": "2026-04-16T03:55:36.590Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20148 (GCVE-0-2026-20148)

    Vulnerability from cvelistv5 – Published: 2026-04-15 16:03 – Updated: 2026-04-15 16:56
    VLAI
    Title
    Cisco Identity Services Engine Path Traversal Vulnerability
    Summary
    A vulnerability in Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to perform path traversal attacks on the underlying operating system and read arbitrary files. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is due to improper validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected system. A successful exploit could allow the attacker to access sensitive files on the affected system.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.2.0
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.2.0 p1
    Affected: 3.1.0 p6
    Affected: 3.2.0 p2
    Affected: 3.1.0 p7
    Affected: 3.3.0
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.1.0 p8
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.1.0 p9
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.2.0 p7
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.1.0 p10
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.4 Patch 2
    Affected: 3.3 Patch 7
    Affected: 3.4 Patch 3
    Affected: 3.5.0
    Affected: 3.4 Patch 4
    Affected: 3.3 Patch 8
    Affected: 3.2 Patch 8
    Affected: 3.5 Patch 1
    Affected: 3.3 Patch 9
    Affected: 3.2 Patch 9
    Create a notification for this product.
    Cisco Cisco ISE Passive Identity Connector Affected: 3.2.0
    Affected: 3.1.0
    Affected: 3.3.0
    Affected: 3.4.0
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20148",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-15T16:50:58.114801Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-15T16:56:35.471Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5.0"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 8"
                },
                {
                  "status": "affected",
                  "version": "3.2 Patch 8"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 9"
                },
                {
                  "status": "affected",
                  "version": "3.2 Patch 9"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco ISE Passive Identity Connector",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to perform path traversal attacks on the underlying operating system and read arbitrary files. To exploit this vulnerability, the attacker must have valid administrative credentials.\r\n\r\nThis vulnerability is due to improper validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected system. A successful exploit could allow the attacker to access sensitive files on the affected system."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.9,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-22",
                  "description": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-15T16:03:31.727Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-rce-traversal-8bYndVrZ",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-rce-traversal-8bYndVrZ"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-rce-traversal-8bYndVrZ",
            "defects": [
              "CSCws52717"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Identity Services Engine Path Traversal Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20148",
        "datePublished": "2026-04-15T16:03:31.727Z",
        "dateReserved": "2025-10-08T11:59:15.385Z",
        "dateUpdated": "2026-04-15T16:56:35.471Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20147 (GCVE-0-2026-20147)

    Vulnerability from cvelistv5 – Published: 2026-04-15 16:03 – Updated: 2026-04-16 03:55
    VLAI
    Title
    Cisco Identity Services Engine Remote Code Execution Vulnerability
    Summary
    A vulnerability in Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to root. In single-node ISE deployments, successful exploitation of this vulnerability could cause the affected ISE node to become unavailable, resulting in a denial of service (DoS) condition. In that condition, endpoints that have not already authenticated would be unable to access the network until the node is restored.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-77 - Improper Neutralization of Special Elements used in a Command ('Command Injection')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.2.0
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.2.0 p1
    Affected: 3.1.0 p6
    Affected: 3.2.0 p2
    Affected: 3.1.0 p7
    Affected: 3.3.0
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.1.0 p8
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.1.0 p9
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.2.0 p7
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.1.0 p10
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.4 Patch 2
    Affected: 3.3 Patch 7
    Affected: 3.4 Patch 3
    Affected: 3.5.0
    Affected: 3.4 Patch 4
    Affected: 3.3 Patch 8
    Affected: 3.2 Patch 8
    Affected: 3.5 Patch 1
    Affected: 3.3 Patch 9
    Affected: 3.2 Patch 9
    Affected: 3.4 Patch 5
    Affected: 3.5 Patch 2
    Create a notification for this product.
    Cisco Cisco ISE Passive Identity Connector Affected: 3.2.0
    Affected: 3.1.0
    Affected: 3.3.0
    Affected: 3.4.0
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20147",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-15T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-16T03:55:35.113Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.5.0"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 8"
                },
                {
                  "status": "affected",
                  "version": "3.2 Patch 8"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 9"
                },
                {
                  "status": "affected",
                  "version": "3.2 Patch 9"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.5 Patch 2"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco ISE Passive Identity Connector",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials.\r\n\r\nThis vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to root. In single-node ISE deployments, successful exploitation of this vulnerability could cause the affected ISE node to become unavailable, resulting in a denial of service (DoS) condition. In that condition, endpoints that have not already authenticated would be unable to access the network until the node is restored."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.9,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-77",
                  "description": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-15T16:03:25.648Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-rce-traversal-8bYndVrZ",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-rce-traversal-8bYndVrZ"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-rce-traversal-8bYndVrZ",
            "defects": [
              "CSCws52738"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Identity Services Engine Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20147",
        "datePublished": "2026-04-15T16:03:25.648Z",
        "dateReserved": "2025-10-08T11:59:15.385Z",
        "dateUpdated": "2026-04-16T03:55:35.113Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20132 (GCVE-0-2026-20132)

    Vulnerability from cvelistv5 – Published: 2026-04-15 16:03 – Updated: 2026-04-15 17:06
    VLAI
    Title
    Cisco Identity Services Engine Multiple Cross-Site Scripting Vulnerabilities
    Summary
    Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker with administrative write privileges to conduct a stored cross-site scripting (XSS) attack or a reflected XSS attack against a user of the web-based management interface of an affected device. These vulnerabilities are due to insufficient sanitization of user-supplied data that is stored in the web page. An attacker could exploit these vulnerabilities by convincing a user of the interface to click a specific link or view an affected web page. The injected script code may be executed in the context of the web-based management interface or allow the attacker to access sensitive browser-based information.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.2.0
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.2.0 p1
    Affected: 3.1.0 p6
    Affected: 3.2.0 p2
    Affected: 3.1.0 p7
    Affected: 3.3.0
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.1.0 p8
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.1.0 p9
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.2.0 p7
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.1.0 p10
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20132",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-15T16:53:55.291064Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-15T17:06:38.222Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker with administrative\u0026nbsp;write privileges to conduct a stored cross-site scripting (XSS) attack or a reflected XSS attack against a user of the web-based management interface of an affected device.\r\n\r\nThese vulnerabilities are due to insufficient sanitization of user-supplied data that is stored in the web page. An attacker could exploit these vulnerabilities by convincing a user of the interface to click a specific link or view an affected web page. The injected script code may be executed in the context of the web-based management interface or allow the attacker to access sensitive browser-based information."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "HIGH",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-15T16:03:14.842Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-isexss-BS8ctE7U",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-isexss-BS8ctE7U"
            }
          ],
          "source": {
            "advisory": "cisco-sa-isexss-BS8ctE7U",
            "defects": [
              "CSCwn87479"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Identity Services Engine Multiple Cross-Site Scripting Vulnerabilities"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20132",
        "datePublished": "2026-04-15T16:03:14.842Z",
        "dateReserved": "2025-10-08T11:59:15.380Z",
        "dateUpdated": "2026-04-15T17:06:38.222Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20047 (GCVE-0-2026-20047)

    Vulnerability from cvelistv5 – Published: 2026-01-15 16:32 – Updated: 2026-02-26 15:04
    VLAI
    Title
    Cisco Identity Services Engine Cross-Site Scripting Vulnerability
    Summary
    A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affected system. An attacker could exploit this vulnerability by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. To exploit this vulnerability, the attacker must have valid administrative credentials.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-80 - Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.2.0
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.2.0 p1
    Affected: 3.1.0 p6
    Affected: 3.2.0 p2
    Affected: 3.1.0 p7
    Affected: 3.3.0
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.1.0 p8
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.1.0 p9
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.2.0 p7
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.1.0 p10
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.4 Patch 2
    Affected: 3.3 Patch 7
    Affected: 3.4 Patch 3
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20047",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-01-16T04:55:53.641286Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T15:04:06.757Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the interface.\r\n\r\nThis vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affected system. An attacker could exploit this vulnerability by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. To exploit this vulnerability, the attacker must have valid administrative credentials."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "HIGH",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-80",
                  "description": "Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-15T16:32:15.578Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-xss-964cdxW5",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-xss-964cdxW5"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-xss-964cdxW5",
            "defects": [
              "CSCwq83752"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cisco Identity Services Engine Cross-Site Scripting Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20047",
        "datePublished": "2026-01-15T16:32:15.578Z",
        "dateReserved": "2025-10-08T11:59:15.355Z",
        "dateUpdated": "2026-02-26T15:04:06.757Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20076 (GCVE-0-2026-20076)

    Vulnerability from cvelistv5 – Published: 2026-01-15 16:32 – Updated: 2026-02-26 15:04
    VLAI
    Title
    Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability
    Summary
    A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affected system. An attacker could exploit this vulnerability by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. To exploit this vulnerability, the attacker must have valid administrative credentials.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.2.0
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.2.0 p1
    Affected: 3.1.0 p6
    Affected: 3.2.0 p2
    Affected: 3.1.0 p7
    Affected: 3.3.0
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.1.0 p8
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.1.0 p9
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.2.0 p7
    Affected: 3.3 Patch 4
    Affected: 3.1.0 p10
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20076",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-01-16T04:55:54.779379Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T15:04:07.360Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface.\r\n\r\nThis vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affected system. An attacker could exploit this vulnerability by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. To exploit this vulnerability, the attacker must have valid administrative credentials."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "HIGH",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-15T16:32:03.744Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-xss-9TDh2kx",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-xss-9TDh2kx"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-xss-9TDh2kx",
            "defects": [
              "CSCwk20177"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20076",
        "datePublished": "2026-01-15T16:32:03.744Z",
        "dateReserved": "2025-10-08T11:59:15.362Z",
        "dateUpdated": "2026-02-26T15:04:07.360Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-20029 (GCVE-0-2026-20029)

    Vulnerability from cvelistv5 – Published: 2026-01-07 16:23 – Updated: 2026-01-07 16:40
    VLAI
    Title
    Cisco Identity Services Engine XML External Entity Processing Information Disclosure Vulnerability
    Summary
    A vulnerability in the licensing features of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, remote attacker with administrative privileges to gain access to sensitive information.  This vulnerability is due to improper parsing of XML that is processed by the web-based management interface of Cisco ISE and Cisco ISE-PIC. An attacker could exploit this vulnerability by uploading a malicious file to the application. A successful exploit could allow the attacker to read arbitrary files from the underlying operating system that could include sensitive data that should otherwise be inaccessible even to administrators. To exploit this vulnerability, the attacker must have valid administrative credentials.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-611 - Improper Restriction of XML External Entity Reference
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Identity Services Engine Software Affected: 3.1.0
    Affected: 3.1.0 p1
    Affected: 3.1.0 p3
    Affected: 3.1.0 p2
    Affected: 3.2.0
    Affected: 3.1.0 p4
    Affected: 3.1.0 p5
    Affected: 3.2.0 p1
    Affected: 3.1.0 p6
    Affected: 3.2.0 p2
    Affected: 3.1.0 p7
    Affected: 3.3.0
    Affected: 3.2.0 p3
    Affected: 3.2.0 p4
    Affected: 3.1.0 p8
    Affected: 3.2.0 p5
    Affected: 3.2.0 p6
    Affected: 3.1.0 p9
    Affected: 3.3 Patch 2
    Affected: 3.3 Patch 1
    Affected: 3.3 Patch 3
    Affected: 3.4.0
    Affected: 3.2.0 p7
    Affected: 3.3 Patch 4
    Affected: 3.4 Patch 1
    Affected: 3.1.0 p10
    Affected: 3.3 Patch 5
    Affected: 3.3 Patch 6
    Affected: 3.4 Patch 2
    Affected: 3.3 Patch 7
    Affected: 3.4 Patch 3
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-20029",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-01-07T16:40:33.564050Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-01-07T16:40:58.555Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Identity Services Engine Software",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "3.1.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.2.0"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p2"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p3"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p4"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p8"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p5"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p6"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p9"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 3"
                },
                {
                  "status": "affected",
                  "version": "3.4.0"
                },
                {
                  "status": "affected",
                  "version": "3.2.0 p7"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 4"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 1"
                },
                {
                  "status": "affected",
                  "version": "3.1.0 p10"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 5"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 6"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 2"
                },
                {
                  "status": "affected",
                  "version": "3.3 Patch 7"
                },
                {
                  "status": "affected",
                  "version": "3.4 Patch 3"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the licensing features of\u0026nbsp;Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, remote attacker with administrative privileges to gain access to sensitive information.\u0026nbsp;\r\n\r\nThis vulnerability is due to improper parsing of XML that is processed by the web-based management interface of Cisco ISE and Cisco ISE-PIC. An attacker could exploit this vulnerability by uploading a malicious file to the application. A successful exploit could allow the attacker to read arbitrary files from the underlying operating system that could include sensitive data that should otherwise be inaccessible even to administrators. To exploit this vulnerability, the attacker must have valid administrative credentials."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is aware that proof-of-concept exploit code is available for the vulnerability described in this advisory.\r\n\r\nThe Cisco PSIRT is not aware of any malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.9,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-611",
                  "description": "Improper Restriction of XML External Entity Reference",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-01-07T16:23:43.372Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-ise-xxe-jWSbSDKt",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-xxe-jWSbSDKt"
            }
          ],
          "source": {
            "advisory": "cisco-sa-ise-xxe-jWSbSDKt",
            "defects": [
              "CSCwq79739"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Identity Services Engine XML External Entity Processing Information Disclosure Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2026-20029",
        "datePublished": "2026-01-07T16:23:43.372Z",
        "dateReserved": "2025-10-08T11:59:15.353Z",
        "dateUpdated": "2026-01-07T16:40:58.555Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }