Medium
CVSS 5.0
Overview
The Sponsor Portal in Cisco Identity Services Engine (ISE) uses weak permissions for uploaded files, which allows remote attackers to read arbitrary files via a direct request, aka Bug ID CSCui67506.
The Sponsor Portal in Cisco Identity Services Engine (ISE) uses weak permissions...
The Sponsor Portal in Cisco Identity Services Engine (ISE) uses weak permissions for uploaded files, which allows remote attackers to read arbitrary files via a direct request, aka Bug ID CSCui67506.
This vulnerability is rated 🟡 MEDIUM.
Recommended actions: