cisco-sa-ise-7Q4TNYUx
Cisco PSIRTHIGH2022-11-16
Cisco Identity Services Engine Vulnerabilities
CVEs:CVE-2022-20966CVE-2022-20965CVE-2022-20964CVE-2022-20967
Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity).
Cisco Identity Services Engine Vulnerabilities
CVEs:CVE-2022-20966CVE-2022-20965CVE-2022-20964CVE-2022-20967
Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Dynamic Access Policies Denial of Service Vulnerability
CVEs:CVE-2022-20947
Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software VPN Authorization Bypass Vulnerability
CVEs:CVE-2022-20928
Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software SNMP Denial of Service Vulnerability
CVEs:CVE-2022-20924
Cisco Firepower Management Center Software Command Injection Vulnerabilities
Cisco Firepower Management Center and Firepower Threat Defense Software SSH Denial of Service Vulnerability
CVEs:CVE-2022-20854
Cisco Firepower Management Center Software Information Disclosure Vulnerability
CVEs:CVE-2022-20941
Cisco Firepower Management Center Software Cross-Site Scripting Vulnerabilities
CVEs:CVE-2022-20831CVE-2022-20832CVE-2022-20833CVE-2022-20834CVE-2022-20835CVE-2022-20836CVE-2022-20838CVE-2022-20839CVE-2022-20840CVE-2022-20843CVE-2022-20872CVE-2022-20905CVE-2022-20932CVE-2022-20935CVE-2022-20936
Cisco Firepower Management Center Software XML External Entity Injection Vulnerability
CVEs:CVE-2022-20938
Cisco FirePOWER Software for ASA FirePOWER Module, Firepower Management Center Software, and NGIPS Software SNMP Default Credential Vulnerability
CVEs:CVE-2022-20918
Cisco Firepower Threat Defense Software and Cisco FXOS Software Command Injection Vulnerability
CVEs:CVE-2022-20934
Cisco Firepower Threat Defense Software Generic Routing Encapsulation Denial of Service Vulnerability
CVEs:CVE-2022-20946
Cisco Firepower Threat Defense Software Privilege Escalation Vulnerability
CVEs:CVE-2022-20949
Cisco Firepower Threat Defense Software SSL Decryption Policy Bleichenbacher Attack Vulnerability
CVEs:CVE-2022-20940
Cisco Firepower Threat Defense Software SIP and Snort 3 Detection Engine Denial of Service Vulnerability
CVEs:CVE-2022-20950
Cisco Secure Firewall 3100 Series Secure Boot Bypass Vulnerability
CVEs:CVE-2022-20826
Multiple Cisco Products Snort SMB2 Detection Engine Policy Bypass and Denial of Service Vulnerabilities
Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software SSL/TLS Client Denial of Service Vulnerability
CVEs:CVE-2022-20927
Cisco Email Security Appliance and Cisco Secure Email and Web Manager HTTP Response Header Injection Vulnerability
CVEs:CVE-2022-20772
Cisco BroadWorks CommPilot Application Software Vulnerabilities
Cisco Email Security Appliance, Cisco Secure Email and Web Manager, and Cisco Secure Web Appliance Information Disclosure Vulnerability
CVEs:CVE-2022-20942
Cisco Email Security Appliance Denial of Service Vulnerability
CVEs:CVE-2022-20960
Cisco Email Security Appliance, Cisco Secure Email and Web Manager, and Cisco Secure Web Appliance Next Generation Management Vulnerabilities
Cisco Identity Services Engine Insufficient Access Control Vulnerability
CVEs:CVE-2022-20956
Cisco Identity Services Engine Cross-Site Request Forgery Vulnerability
CVEs:CVE-2022-20961
Cisco Identity Services Engine Path Traversal Vulnerability
CVEs:CVE-2022-20962
Cisco Identity Services Engine Software Resource Exhaustion Vulnerability
CVEs:CVE-2022-20937
Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability
CVEs:CVE-2022-20963
Cisco Umbrella Stored Cross-Site Scripting Vulnerability
CVEs:CVE-2022-20969
Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.