Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The upload-dialog implementation in Cisco Identity Services Engine (ISE) allows remote authenticated users to upload files with an arbitrary file type, and consequently conduct attacks against unspecified other systems, via a crafted file, aka Bug ID CSCui67511.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco ISE 文件上传对话框输入验证漏洞
Vulnerability Description
Cisco Identity Services Engine(ISE)是美国思科(Cisco)公司的一款基于身份的环境感知平台(ISE身份服务引擎)。该平台通过收集网络、用户和设备中的实时信息,制定并实施相应策略来监管网络。 Cisco ISE中的文件上传对话框中存在不可信任意文件上传漏洞,该漏洞源于程序没有充分过滤和验证上传的文件。远程经过授权的攻击者可利用该漏洞上传恶意的文件来控制另外的系统。
CVSS Information
N/A
Vulnerability Type
N/A