Rewterz Threat Alert – Mimic Ransomware Abuses Everything APIs for Encryption Process – Active IOCs
February 2, 2023Rewterz Threat Advisory – Multiple Cisco ISE Software Vulnerbilities
February 2, 2023Rewterz Threat Alert – Mimic Ransomware Abuses Everything APIs for Encryption Process – Active IOCs
February 2, 2023Rewterz Threat Advisory – Multiple Cisco ISE Software Vulnerbilities
February 2, 2023Severity
High
Analysis Summary
CVE-2023-20030
Cisco Identity Services Engine could allow a remote authenticated attacker to obtain sensitive information, caused by improper handling of XML External Entity (XXE) entries when parsing certain XML files. By uploading a specially-crafted XML file, a remote attacker could exploit this vulnerability to retrieve files from the local system.
Impact
- Information Disclosure
Indicators Of Compromise
CVE
- CVE-2023-20030
Affected Vendors
Cisco
Affected Products
- Cisco Identity Services Engine (ISE)
Remediation
Refer to Cisco Security Advisory for patch, upgrade or suggested workaround information.