← back
CVE-2015-4268

CVE-2015-4268

EPSS 1.5%
Multiple cross-site scripting (XSS) vulnerabilities in the Infra Admin UI in Cisco Identity Services Engine (ISE) 1.2(1.198) and 1.3(0.876) allow remote attackers to inject arbitrary web script or HTML via unspecified parameters in a (1) GET or (2) POST request, aka Bug ID CSCus16052.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://tools.cisco.com/security/center/viewAlert.x?alertId=39873http://www.securitytracker.com/id/1032889