6Kas
CVE-2024-20487 | Cisco Identity Services Engine Software 2.7.0 p8 up to 3.3 Patch 3 Web-based Management Interface cross site scripting (cisco-sa-ise-multi-vulns-AF544ED5)
A vulnerability was found in Cisco Identity Services Engine Software. It has been classified as problematic. This affects an unknown part of the component Web-based Management Interface. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-20487. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.