Vulnerabilities > Cisco > Identity Services Engine > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-07-04 | CVE-2017-6605 | Cross-site Scripting vulnerability in Cisco Identity Services Engine 2.1(0.800) A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct a reflective cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. | 3.5 |
| 2013-10-16 | CVE-2013-5541 | Cross-Site Scripting vulnerability in Cisco products Cross-site scripting (XSS) vulnerability in the file-upload interface in Cisco Identity Services Engine (ISE) allows remote authenticated users to inject arbitrary web script or HTML via a crafted filename, aka Bug ID CSCui67495. | 3.5 |