A vulnerability was found in Cisco Identity Services Engine (Policy Management Software) (unknown version). It has been rated as critical. This issue affects an unknown functionality of the component REST API. Upgrading eliminates this vulnerability.
Cisco Identity Services Engine REST API privileges assignment
- Virtual Patching
- October 8, 2021
- 8:13 am
CVE-2022-37708 : DOCKER 20.10.15 BUILD FD82621 PERMISSION
Description Docker version 20.10.15, build fd82621 is vulnerable to Insecure Permissions. Unauthorized users outside the Docker container can access any
CVE-2023-0240 : LINUX KERNEL UP TO 5.10.160 IO_URING IO_PREP_ASYNC_WORK USE AFTER FREE
Description There is a logic error in io_uring’s implementation which can be used to trigger a use-after-free vulnerability leading to
CVE-2023-0556 : CONTENTSTUDIO PLUGIN UP TO 1.2.5 ON WORDPRESS CSTU_GET_METADATA AUTHORIZATION
Description The ContentStudio plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on several functions