Detections
Analytics

Cisco Identity Services Engine XXE Injection (cisco-sa-ise-xxe-inj-GecEHY58)

medium Nessus Plugin ID 170958

Language:

Version 1.5

Sep 20, 2023, 12:06 PM

  • IAVM reference

Plugin Feed: 202309201206

Version 1.4

Jun 20, 2023, 9:07 PM

  • Logic Changes

Plugin Feed: 202306202107

Version 1.3

Apr 12, 2023, 4:09 PM

  • CVSS metrics ("CVSSv2 score" changed from 5.5 to 7.3. "CVSSv2 score" changed from 5.5 to 7.3. "CVSSv3 score" changed from 5.5 to 6.0. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L" to "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:L". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:P" to "CVSS2#AV:N/AC:L/Au:M/C:C/I:P/A:P". "CVSSv3 score" changed from 5.5 to 6.0. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L" to "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:L". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:P" to "CVSS2#AV:N/AC:L/Au:M/C:C/I:P/A:P". "CVSSv3 score" changed from 5.5 to 6.0)
  • CVSSv2 severity (based on CVE-2023-20030, severity increased from "Medium" to "High")
  • CVSSv3 score source (set to "CVE-2023-20030")

Plugin Feed: 202304121609

Version 1.2

Apr 12, 2023, 2:07 PM

  • CVSSv3 score source (set to "CVE-2023-20030")
  • CVSSv2 severity (based on CVE-2023-20030, severity increased from "Medium" to "High")
  • CVSS metrics ("CVSSv2 score" changed from 5.5 to 7.3. "CVSSv2 score" changed from 5.5 to 7.3. "CVSSv2 score" changed from 5.5 to 7.3. "CVSSv3 score" changed from 5.5 to 6.0. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L" to "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:L". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:P" to "CVSS2#AV:N/AC:L/Au:M/C:C/I:P/A:P". "CVSSv3 score" changed from 5.5 to 6.0. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L" to "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:L". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:P" to "CVSS2#AV:N/AC:L/Au:M/C:C/I:P/A:P". "CVSSv3 score" changed from 5.5 to 6.0. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L" to "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:L". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:P" to "CVSS2#AV:N/AC:L/Au:M/C:C/I:P/A:P". "CVSSv3 score" changed from 5.5 to 6.0)

Plugin Feed: 202304121407

Version 1.1

Feb 3, 2023, 12:10 PM

  • STIG Severity (set to "II")
  • IAVM reference

Plugin Feed: 202302031210

Version 1.0

Feb 2, 2023, 3:56 PM

  • New

Plugin Feed: 202302021556

* Changelogs are generally available for changes made after Nov 1, 2022