CVE-2013-3420
Cisco Identity Services Engine - Cross-Site Request Forgery
Title source: llmDescription
Cross-site request forgery (CSRF) vulnerability in the web framework on the Cisco Identity Services Engine (ISE) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuh25506.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3420
Scores
EPSS
0.0058
EPSS Percentile
43.4%
Details
CWE
CWE-352
Status
published
Products (2)
cisco/identity_services_engine
cisco/identity_services_engine_software
Published
Jul 18, 2013
Tracked Since
Feb 18, 2026