AI Score
Confidence
Low
EPSS
Percentile
65.0%
The Sponsor Portal in Cisco Identity Services Engine (ISE) uses weak permissions for uploaded files, which allows remote attackers to read arbitrary files via a direct request, aka Bug ID CSCui67506.
tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5538