Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total3
Critical0
High0
Medium3
Reset
Showing 1-3 of 3 records
Threat Entry Updated 2026-01-30

CVE-2026-20076 - Cisco Identity Services Engine Software Plugin

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affected system. An attacker could exploit this vulnerability by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive,…

PLUGIN Cisco Identity Services Engine Software

CVE-2026-20076

MEDIUM CVSS 4.8 2026-01-15
Open Full Technical Breakdown
Threat Entry Updated 2026-01-30

CVE-2026-20047 - Cisco Identity Services Engine Software Plugin

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affected system. An attacker could exploit this vulnerability by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the…

PLUGIN Cisco Identity Services Engine Software

CVE-2026-20047

MEDIUM CVSS 4.8 2026-01-15
Open Full Technical Breakdown
Threat Entry Updated 2026-01-08

CVE-2026-20029 - Cisco Identity Services Engine Software Plugin

A vulnerability in the licensing features of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, remote attacker with administrative privileges to gain access to sensitive information.  This vulnerability is due to improper parsing of XML that is processed by the web-based management interface of Cisco ISE and Cisco ISE-PIC. An attacker could exploit this vulnerability by uploading a malicious file to the application. A successful exploit could allow the attacker to read arbitrary files from the underlying operating system that could include sensitive…

PLUGIN Cisco Identity Services Engine Software

CVE-2026-20029

MEDIUM CVSS 4.9 2026-01-07
Open Full Technical Breakdown
Scroll to top