CVE-2013-5525
The available sources confirm CVE-2013-5525 affects Cisco Identity Services Engine (ISE) 1.2 and earlier, via a SQL injection in the web framework. A remote, authenticated attacker can execute arbitrary SQL through unspecified vectors by submitting crafted requests (e.g., crafted URLs). The root ...