CVE-2024-20531

Опубликовано: 06 нояб. 2024

Источник: nvd

CVSS3: 5.5

CVSS3: 6.5

EPSS Низкий

Описание

This vulnerability is due to improper handling of XML External Entity (XXE) entries when parsing XML input. An attacker could exploit this vulnerability by sending a crafted API request to an affected device. A successful exploit could allow the attacker to read arbitrary files on the underlying operating system or conduct an SSRF attack through the affected device.

Ссылки

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-multi-vuln-DBQdWRy
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:cisco:identity_services_engine:3.0.0:-:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch1:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch2:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch3:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch4:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch5:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch6:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch7:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.0.0:patch8:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.1.0:-:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch1:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch2:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch3:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch4:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch5:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch6:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch7:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch8:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch9:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.2.0:-:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.2.0:patch1:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.2.0:patch2:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.2.0:patch3:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.2.0:patch4:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.2.0:patch5:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.2.0:patch6:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.3.0:-:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.3.0:patch1:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.3.0:patch2:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.3.0:patch3:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine:3.4.0:-:*:*:*:*:*:*

EPSS

Процентиль: 51%

0.00279

Низкий

5.5 Medium

CVSS3

6.5 Medium

CVSS3

Дефекты

CWE-611

Связанные уязвимости

GHSA-38gf-q933-q62g

CVSS3: 5.5

github

больше 1 года назад

A vulnerability in the API of Cisco ISE could allow an authenticated, remote attacker to read arbitrary files on the underlying operating system of an affected device and conduct a server-side request forgery (SSRF) attack through an affected device. To exploit this vulnerability, the attacker would need valid Super Admin credentials. This vulnerability is due to improper handling of XML External Entity (XXE) entries when parsing XML input. An attacker could exploit this vulnerability by sending a crafted API request to an affected device. A successful exploit could allow the attacker to read arbitrary files on the underlying operating system or conduct an SSRF attack through the affected device.

EPSS

Процентиль: 51%

0.00279

Низкий

5.5 Medium

CVSS3

6.5 Medium

CVSS3

Дефекты

CWE-611