Authorization

2022-11-0418:15:00

PRIOn knowledge base

www.prio-n.com

vulnerability

remote attacker

authorization bypass

cisco ise

web-based interface

software updates

http request

access control

system files

8.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

54.6%

JSON

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to bypass authorization and access system files.

This vulnerability is due to improper access control in the web-based management interface of an affected device. An attacker could exploit this vulnerability by sending a crafted HTTP request to the affected device. A successful exploit could allow the attacker to list, download, and delete certain files that they should not have access to.

Cisco plans to release software updates that address this vulnerability.

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-access-contol-EeufSUCx [“https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-access-contol-EeufSUCx”]

CPENameOperatorVersion
identity_services_engineeq3.1
identity_services_engineeq3.1 patch1
identity_services_engineeq3.1 patch3
identity_services_engineeq3.2
identity_services_engineeq3.1 patch4

Name	Operator	Version
identity_services_engine	eq	3.1
identity_services_engine	eq	3.1 patch1
identity_services_engine	eq	3.1 patch3
identity_services_engine	eq	3.2
identity_services_engine	eq	3.1 patch4