Cisco has published a security advisory to address vulnerabilities affecting the following products on the 16th of November 2022. It is recommended that you take the necessary precautions to ensure your products are always protected.
Cisco Identity Services Engine Insufficient Access Control Vulnerability
Cisco Identity Services Engine Cross-Site Scripting Vulnerability
For more information on these updates, you can follow this URL:
https://tools.cisco.com/security/center/publicationListing.x
The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.
PDF Download: Cisco Security Advisory.pdf
References
Cisco Security Advisories. (16th of November 2022). Reviewed from Cisco:
https://tools.cisco.com/security/center/publicationListing.x
Cisco Releases Security Updates for Identity Services Engine (16th of November 2022). Reviewed from Cybersecurity and Infrastructure Security Agency:
https://www.cisa.gov/uscert/ncas/current-activity/2022/11/16/cisco-releases-security-updates-identity-services-engine