Unrestricted file upload

2013-10-1610:52:00

PRIOn knowledge base

www.prio-n.com

6.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.2%

JSON

The file-upload feature in Cisco Identity Services Engine (ISE) allows remote authenticated users to cause a denial of service (disk consumption and administration-interface outage) by uploading many files, aka Bug ID CSCui67519.

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5540