CVE-2013-3420

Cisco Identity Services Engine - Cross-Site Request Forgery

Title source: llm
STIX 2.1

Description

Cross-site request forgery (CSRF) vulnerability in the web framework on the Cisco Identity Services Engine (ISE) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuh25506.

References (1)

Core 1
Core References

Scores

EPSS 0.0058
EPSS Percentile 43.4%

Details

CWE
CWE-352
Status published
Products (2)
cisco/identity_services_engine
cisco/identity_services_engine_software
Published Jul 18, 2013
Tracked Since Feb 18, 2026