Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2013-5524

EPSS 0.56% · P68
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2013-5524

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Cross-site scripting (XSS) vulnerability in the troubleshooting page in Cisco Identity Services Engine (ISE) 1.2 and earlier allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCug77655.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Cisco Identity Services Engine 跨站脚本漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Cisco Identity Services Engine(ISE)是美国思科(Cisco)公司的一款基于身份的环境感知平台(ISE身份服务引擎)。该平台通过收集网络、用户和设备中的实时信息,制定并实施相应策略来监管网络。 Cisco ISE 1.2及之前的版本中的troubleshooting页面中存在跨站脚本漏洞,该漏洞源于程序没有充分过滤输入的参数。远程攻击者可通过诱使用户打开恶意的链接,利用该漏洞注入任意Web脚本或HTML。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2013-5524

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2013-5524

登录查看更多情报信息。

Same Patch Batch · n/a · 2013-10-10 · 23 CVEs total

CVE-2013-5526Cisco 9900系列IP电话拒绝服务漏洞
CVE-2013-4767Eucalyptus 安全漏洞
CVE-2013-4351GnuPG 加密问题漏洞
CVE-2013-4342xinetd 权限许可和访问控制问题漏洞
CVE-2013-4271Restlet Framework Object Deserialization 远程代码执行漏洞
CVE-2013-4221Restlet Framework XML Deserialization 远程代码执行漏洞
CVE-2013-2241Gallery ‘data_rest.php’多个信息泄露漏洞
CVE-2013-2240Gallery ‘flowplayer.swf.php’安全绕过漏洞
CVE-2013-2138Gallery 多个跨站脚本漏洞
CVE-2013-1881GNOME libsvg XML外部实体注入漏洞
CVE-2013-5527Cisco IOS/IOS XE OSPF功能输入验证漏洞
CVE-2013-0577IBM InfoSphere Optim Data Growth Solution for Oracle E-business Suite 未授权访问漏洞
CVE-2013-5525Cisco Identity Services Engine Web框架SQL注入漏洞
CVE-2013-5523Cisco Identity Services Engine 跨框架漏洞
CVE-2013-5499Cisco IOS DHCP服务器拒绝服务漏洞
CVE-2013-5008Symantec Management Platform 未授权访问漏洞
CVE-2013-4396X.Org X11 服务器模块释放后重用漏洞
CVE-2013-4387Linux kernel 缓冲区错误漏洞
CVE-2013-4345Linux kernel 数字错误漏洞
CVE-2013-3409Cisco Prime Central for HCS 门户网站信任管理漏洞

Showing top 20 of 23 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2013-5524

No comments yet

Leave a comment