|
Description
|
|
(:An SQL injection vulnerability has been identified in the portal of Cisco Identity Services Engine (ISE).:A remote, authenticated attacker could exploit it via specially crafted HTTP POST requests containing SQL statements in order to view or delete notices (that may contain guest credentials in clear text) owned by other users of the system.::The vulnerability is due to insufficient validation of user-supplied input by the affected software.)
|
