CVE-2024-20515 | Cisco Identity Services Engine Software 2.7.0 p8 up to 3.3.0 Web-based Management Interface missing encryption (cisco-sa-ise-info-disc-ZYF2nEEX)

A vulnerability, which was classified as problematic, was found in Cisco Identity Services Engine Software. Affected is an unknown function of the component Web-based Management Interface. The manipulation leads to missing encryption of sensitive data.

This vulnerability is traded as CVE-2024-20515. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.