CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-20030

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to access sensitive information, conduct a server-side request forgery (SSRF) attack through an affected device, or negatively impact the responsiveness of the web-based management interface itself. This vulnerability is due to improper handling of XML External Entity (XXE) entries when parsing certain XML files. An attacker could exploit this vulnerability by uploading a crafted XML file that contains references to external entities. A successful exploit could allow the attacker to retrieve files from the local system, resulting in the disclosure of confidential information. A successful exploit could also cause the web application to perform arbitrary HTTP requests on behalf of the attacker or consume memory resources to reduce the availability of the web-based management interface. To successfully exploit this vulnerability, an attacker would need valid Super Admin or Policy Admin credentials.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 41.7%

CVSS Severity

CVSS v3 Score 6.0

References

Products affected by CVE-2023-20030

Cisco » Identity Services Engine » Version: N/A

cpe:2.3:a:cisco:identity_services_engine:-
Cisco » Identity Services Engine » Version: 002.002(000.916)

cpe:2.3:a:cisco:identity_services_engine:002.002(000.916)
Cisco » Identity Services Engine » Version: 002.003(000.906)

cpe:2.3:a:cisco:identity_services_engine:002.003(000.906)
Cisco » Identity Services Engine » Version: 002.004(000.911)

cpe:2.3:a:cisco:identity_services_engine:002.004(000.911)
Cisco » Identity Services Engine » Version: 002.004(000.914)

cpe:2.3:a:cisco:identity_services_engine:002.004(000.914)
Cisco » Identity Services Engine » Version: 002.006(000.156)

cpe:2.3:a:cisco:identity_services_engine:002.006(000.156)
Cisco » Identity Services Engine » Version: 002.006(000.902)

cpe:2.3:a:cisco:identity_services_engine:002.006(000.902)
Cisco » Identity Services Engine » Version: 002.007(000.356)

cpe:2.3:a:cisco:identity_services_engine:002.007(000.356)
Cisco » Identity Services Engine » Version: 003.000(000.458)

cpe:2.3:a:cisco:identity_services_engine:003.000(000.458)
Cisco » Identity Services Engine » Version: 003.001(000.518)

cpe:2.3:a:cisco:identity_services_engine:003.001(000.518)
Cisco » Identity Services Engine » Version: 1.0

cpe:2.3:a:cisco:identity_services_engine:1.0
Cisco » Identity Services Engine » Version: 1.0.4

cpe:2.3:a:cisco:identity_services_engine:1.0.4
Cisco » Identity Services Engine » Version: 1.1

cpe:2.3:a:cisco:identity_services_engine:1.1
Cisco » Identity Services Engine » Version: 1.1.1

cpe:2.3:a:cisco:identity_services_engine:1.1.1
Cisco » Identity Services Engine » Version: 1.1.2

cpe:2.3:a:cisco:identity_services_engine:1.1.2
Cisco » Identity Services Engine » Version: 1.1.3

cpe:2.3:a:cisco:identity_services_engine:1.1.3
Cisco » Identity Services Engine » Version: 1.1.4

cpe:2.3:a:cisco:identity_services_engine:1.1.4
Cisco » Identity Services Engine » Version: 1.2

cpe:2.3:a:cisco:identity_services_engine:1.2
Cisco » Identity Services Engine » Version: 1.2(1.199)

cpe:2.3:a:cisco:identity_services_engine:1.2(1.199)
Cisco » Identity Services Engine » Version: 1.2.1

cpe:2.3:a:cisco:identity_services_engine:1.2.1
Cisco » Identity Services Engine » Version: 1.3

cpe:2.3:a:cisco:identity_services_engine:1.3
Cisco » Identity Services Engine » Version: 1.3(0.722)

cpe:2.3:a:cisco:identity_services_engine:1.3(0.722)
Cisco » Identity Services Engine » Version: 1.3(0.876)

cpe:2.3:a:cisco:identity_services_engine:1.3(0.876)
Cisco » Identity Services Engine » Version: 1.3(0.909)

cpe:2.3:a:cisco:identity_services_engine:1.3(0.909)
Cisco » Identity Services Engine » Version: 1.3(106.146)

cpe:2.3:a:cisco:identity_services_engine:1.3(106.146)
Cisco » Identity Services Engine » Version: 1.3(120.135)

cpe:2.3:a:cisco:identity_services_engine:1.3(120.135)
Cisco » Identity Services Engine » Version: 1.4

cpe:2.3:a:cisco:identity_services_engine:1.4
Cisco » Identity Services Engine » Version: 1.4(0.109)

cpe:2.3:a:cisco:identity_services_engine:1.4(0.109)
Cisco » Identity Services Engine » Version: 1.4(0.181)

cpe:2.3:a:cisco:identity_services_engine:1.4(0.181)
Cisco » Identity Services Engine » Version: 1.4(0.253)

cpe:2.3:a:cisco:identity_services_engine:1.4(0.253)
Cisco » Identity Services Engine » Version: 1.4(0.908)

cpe:2.3:a:cisco:identity_services_engine:1.4(0.908)
Cisco » Identity Services Engine » Version: 2.0

cpe:2.3:a:cisco:identity_services_engine:2.0
Cisco » Identity Services Engine » Version: 2.0(0.147)

cpe:2.3:a:cisco:identity_services_engine:2.0(0.147)
Cisco » Identity Services Engine » Version: 2.0(0.169)

cpe:2.3:a:cisco:identity_services_engine:2.0(0.169)
Cisco » Identity Services Engine » Version: 2.0(0.222)

cpe:2.3:a:cisco:identity_services_engine:2.0(0.222)
Cisco » Identity Services Engine » Version: 2.0(0.234)

cpe:2.3:a:cisco:identity_services_engine:2.0(0.234)
Cisco » Identity Services Engine » Version: 2.0(0.249)

cpe:2.3:a:cisco:identity_services_engine:2.0(0.249)
Cisco » Identity Services Engine » Version: 2.0(0.306)

cpe:2.3:a:cisco:identity_services_engine:2.0(0.306)
Cisco » Identity Services Engine » Version: 2.0(1.130)

cpe:2.3:a:cisco:identity_services_engine:2.0(1.130)
Cisco » Identity Services Engine » Version: 2.0.1

cpe:2.3:a:cisco:identity_services_engine:2.0.1
Cisco » Identity Services Engine » Version: 2.1

cpe:2.3:a:cisco:identity_services_engine:2.1
Cisco » Identity Services Engine » Version: 2.1(0.474)

cpe:2.3:a:cisco:identity_services_engine:2.1(0.474)
Cisco » Identity Services Engine » Version: 2.1(0.476)

cpe:2.3:a:cisco:identity_services_engine:2.1(0.476)
Cisco » Identity Services Engine » Version: 2.1(0.800)

cpe:2.3:a:cisco:identity_services_engine:2.1(0.800)
Cisco » Identity Services Engine » Version: 2.1(0.904)

cpe:2.3:a:cisco:identity_services_engine:2.1(0.904)
Cisco » Identity Services Engine » Version: 2.1(0.907)

cpe:2.3:a:cisco:identity_services_engine:2.1(0.907)
Cisco » Identity Services Engine » Version: 2.1(102.101)

cpe:2.3:a:cisco:identity_services_engine:2.1(102.101)
Cisco » Identity Services Engine » Version: 2.1(102.103)

cpe:2.3:a:cisco:identity_services_engine:2.1(102.103)
Cisco » Identity Services Engine » Version: 2.1.0

cpe:2.3:a:cisco:identity_services_engine:2.1.0
Cisco » Identity Services Engine » Version: 2.1_base

cpe:2.3:a:cisco:identity_services_engine:2.1_base
Cisco » Identity Services Engine » Version: 2.2

cpe:2.3:a:cisco:identity_services_engine:2.2
Cisco » Identity Services Engine » Version: 2.2(0.283)

cpe:2.3:a:cisco:identity_services_engine:2.2(0.283)
Cisco » Identity Services Engine » Version: 2.2(0.470)

cpe:2.3:a:cisco:identity_services_engine:2.2(0.470)
Cisco » Identity Services Engine » Version: 2.2(0.471)

cpe:2.3:a:cisco:identity_services_engine:2.2(0.471)
Cisco » Identity Services Engine » Version: 2.2(0.903)

cpe:2.3:a:cisco:identity_services_engine:2.2(0.903)
Cisco » Identity Services Engine » Version: 2.2(0.909)

cpe:2.3:a:cisco:identity_services_engine:2.2(0.909)
Cisco » Identity Services Engine » Version: 2.2(0.910)

cpe:2.3:a:cisco:identity_services_engine:2.2(0.910)
Cisco » Identity Services Engine » Version: 2.2(1.145)

cpe:2.3:a:cisco:identity_services_engine:2.2(1.145)
Cisco » Identity Services Engine » Version: 2.2.0

cpe:2.3:a:cisco:identity_services_engine:2.2.0
Cisco » Identity Services Engine » Version: 2.2.0.470

cpe:2.3:a:cisco:identity_services_engine:2.2.0.470
Cisco » Identity Services Engine » Version: 2.3

cpe:2.3:a:cisco:identity_services_engine:2.3
Cisco » Identity Services Engine » Version: 2.3(0.151)

cpe:2.3:a:cisco:identity_services_engine:2.3(0.151)
Cisco » Identity Services Engine » Version: 2.3(0.298)

cpe:2.3:a:cisco:identity_services_engine:2.3(0.298)
Cisco » Identity Services Engine » Version: 2.3(0.904)

cpe:2.3:a:cisco:identity_services_engine:2.3(0.904)
Cisco » Identity Services Engine » Version: 2.3(0.905)

cpe:2.3:a:cisco:identity_services_engine:2.3(0.905)
Cisco » Identity Services Engine » Version: 2.3.0

cpe:2.3:a:cisco:identity_services_engine:2.3.0
Cisco » Identity Services Engine » Version: 2.3.0.298

cpe:2.3:a:cisco:identity_services_engine:2.3.0.298
Cisco » Identity Services Engine » Version: 2.4

cpe:2.3:a:cisco:identity_services_engine:2.4
Cisco » Identity Services Engine » Version: 2.4(0.192)

cpe:2.3:a:cisco:identity_services_engine:2.4(0.192)
Cisco » Identity Services Engine » Version: 2.4(0.247)

cpe:2.3:a:cisco:identity_services_engine:2.4(0.247)
Cisco » Identity Services Engine » Version: 2.4(0.357)

cpe:2.3:a:cisco:identity_services_engine:2.4(0.357)
Cisco » Identity Services Engine » Version: 2.4(0.901)

cpe:2.3:a:cisco:identity_services_engine:2.4(0.901)
Cisco » Identity Services Engine » Version: 2.4(0.901.1)

cpe:2.3:a:cisco:identity_services_engine:2.4(0.901.1)
Cisco » Identity Services Engine » Version: 2.4(0.902)

cpe:2.3:a:cisco:identity_services_engine:2.4(0.902)
Cisco » Identity Services Engine » Version: 2.4(0.903)

cpe:2.3:a:cisco:identity_services_engine:2.4(0.903)
Cisco » Identity Services Engine » Version: 2.4(0.904)

cpe:2.3:a:cisco:identity_services_engine:2.4(0.904)
Cisco » Identity Services Engine » Version: 2.4(100.159)

cpe:2.3:a:cisco:identity_services_engine:2.4(100.159)
Cisco » Identity Services Engine » Version: 2.4.0

cpe:2.3:a:cisco:identity_services_engine:2.4.0
Cisco » Identity Services Engine » Version: 2.4.0.357

cpe:2.3:a:cisco:identity_services_engine:2.4.0.357
Cisco » Identity Services Engine » Version: 2.5

cpe:2.3:a:cisco:identity_services_engine:2.5
Cisco » Identity Services Engine » Version: 2.5(0.1)

cpe:2.3:a:cisco:identity_services_engine:2.5(0.1)
Cisco » Identity Services Engine » Version: 2.5(0.225)

cpe:2.3:a:cisco:identity_services_engine:2.5(0.225)
Cisco » Identity Services Engine » Version: 2.5(0.353)

cpe:2.3:a:cisco:identity_services_engine:2.5(0.353)
Cisco » Identity Services Engine » Version: 2.6

cpe:2.3:a:cisco:identity_services_engine:2.6
Cisco » Identity Services Engine » Version: 2.6(0.156)

cpe:2.3:a:cisco:identity_services_engine:2.6(0.156)
Cisco » Identity Services Engine » Version: 2.6(0.999)

cpe:2.3:a:cisco:identity_services_engine:2.6(0.999)
Cisco » Identity Services Engine » Version: 2.6.0

cpe:2.3:a:cisco:identity_services_engine:2.6.0
Cisco » Identity Services Engine » Version: 2.6.0.156

cpe:2.3:a:cisco:identity_services_engine:2.6.0.156
Cisco » Identity Services Engine » Version: 2.7

cpe:2.3:a:cisco:identity_services_engine:2.7
Cisco » Identity Services Engine » Version: 2.7(0.207)

cpe:2.3:a:cisco:identity_services_engine:2.7(0.207)
Cisco » Identity Services Engine » Version: 2.7(0.356)

cpe:2.3:a:cisco:identity_services_engine:2.7(0.356)
Cisco » Identity Services Engine » Version: 2.7(0.903)

cpe:2.3:a:cisco:identity_services_engine:2.7(0.903)
Cisco » Identity Services Engine » Version: 2.7.0

cpe:2.3:a:cisco:identity_services_engine:2.7.0
Cisco » Identity Services Engine » Version: 2.7.0.356

cpe:2.3:a:cisco:identity_services_engine:2.7.0.356
Cisco » Identity Services Engine » Version: 3.0(0.458)

cpe:2.3:a:cisco:identity_services_engine:3.0(0.458)
Cisco » Identity Services Engine » Version: 3.0.0

cpe:2.3:a:cisco:identity_services_engine:3.0.0
Cisco » Identity Services Engine » Version: 3.1

cpe:2.3:a:cisco:identity_services_engine:3.1
Cisco » Identity Services Engine » Version: 3.1(0.440)

cpe:2.3:a:cisco:identity_services_engine:3.1(0.440)
Cisco » Identity Services Engine » Version: 3.1(0.518)

cpe:2.3:a:cisco:identity_services_engine:3.1(0.518)
Cisco » Identity Services Engine » Version: 3.1.0

cpe:2.3:a:cisco:identity_services_engine:3.1.0
Cisco » Identity Services Engine » Version: 3.2

cpe:2.3:a:cisco:identity_services_engine:3.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-20030

Products

Pricing

Contact Us