THREAT OPS › Threat News › Cisco Identity Services Engine Multiple Cross-Site Scripting Vulnerabilities
Cisco Identity Services Engine Multiple Cross-Site Scripting Vulnerabilities
<p>Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker with administrative <em>write </em>privileges to conduct a stored cross-site scripting (XSS) attack or a reflected XSS attack against a user of the web-based management interface of an affected device.</p> <p>These vulnerabilities are due to i
MITRE ATT&CK techniques
- VulnerabilitiesT1588.006
Indicators of compromise
- CVE-2026-20132cve