Vulnerabilities in Cisco Identity Services Engine require your attention

21-Oct-22

Two vulnerabilities�CVE-2022-20822 and CVE-2022-20959�that might be used to read, write, execute arbitrary code, or access sensitive data have been alerted to administrators of Cisco Identity Services Engine systems by Cisco.

The Cisco PSIRT is aware that after software updates are made available, proof-of-concept exploit code for the vulnerability mentioned in this advisory will also be made public. After the release of this alert, public reports of the vulnerability, including a description and classification without precise technical specifics, will be accessible, the business said.

Read More…