4 matches found
CVE-2014-8015
The Sponsor Portal in Cisco Identity Services Engine ISE allows remote authenticated users to obtain access to an arbitrary sponsor's guest account via a modified HTTP request, aka Bug ID CSCur64400...
Design/Logic Flaw
The Sponsor Portal in Cisco Identity Services Engine ISE allows remote authenticated users to obtain access to an arbitrary sponsor's guest account via a modified HTTP request, aka Bug ID CSCur64400...
CVE-2014-8015
The Sponsor Portal in Cisco Identity Services Engine ISE allows remote authenticated users to obtain access to an arbitrary sponsor's guest account via a modified HTTP request, aka Bug ID CSCur64400...
CVE-2014-8015
Cisco Identity Services Engine (ISE) Sponsor Portal is affected by CVE-2014-8015. An authenticated remote attacker can manipulate an HTTP request to access or modify a guest account created by another sponsor due to a failure to enforce cross-sponsor guest-account isolation. The issue is exploita...