CVE-2013-5524

CVE Database · CVE-2013-5524

CVE-2013-5524

· N/AModified

CVSS v3.1

N/A

EPSS

1.49%

Published

Oct 10, 2013

Modified

Apr 28, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Cross-site scripting (XSS) vulnerability in the troubleshooting page in Cisco Identity Services Engine (ISE) 1.2 and earlier allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCug77655.

Weaknesses (CWE)

CWE-79

Affected Products (3)

cisco · identity_services_engine_softwarevulnerable

References (14)

http://osvdb.org/98166

http://secunia.com/advisories/55067

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5524

Vendor Advisory

http://tools.cisco.com/security/center/viewAlert.x?alertId=31159

Vendor Advisory

http://www.securityfocus.com/bid/62870

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1029155

Third Party AdvisoryVDB Entry

https://exchange.xforce.ibmcloud.com/vulnerabilities/87722

http://osvdb.org/98166

KEV Catalog EPSS Scores Vendors All CVEs