Identity Services Engine Software@1.2(1.901) Security Vulnerabilities and Issues — Identity Services Engine Software@1.2(1.901) CVE List

Lucene search

CiscoIdentity Services Engine Software1.2(1.901)

4 matches found

CVE•added 2016/01/15 3:59 a.m.•52 views

CVE-2015-6323

The Admin portal in Cisco Identity Services Engine (ISE) 1.1.x, 1.2.0 before patch 17, 1.2.1 before patch 8, 1.3 before patch 5, and 1.4 before patch 4 allows remote attackers to obtain administrative access via unspecified vectors, aka Bug ID CSCuw34253.

10CVSS9.3AI score0.01486EPSS

CVE•added 2016/01/23 5:59 a.m.•41 views

CVE-2015-6317

Cisco Identity Services Engine (ISE) before 2.0 allows remote authenticated users to bypass intended web-resource access restrictions via a direct request, aka Bug ID CSCuu45926.

6.8CVSS6.1AI score0.00139EPSS

CVE•added 2015/06/12 2:59 p.m.•39 views

CVE-2015-4182

The administrative web interface in Cisco Identity Services Engine (ISE) before 1.3 allows remote authenticated users to bypass intended access restrictions, and obtain sensitive information or change settings, via unspecified vectors, aka Bug ID CSCui72087.

5.5CVSS6.1AI score0.00206EPSS

CVE•added 2015/05/29 3:59 p.m.•35 views

CVE-2015-0757

The web framework in Cisco Identity Services Engine (ISE) 1.2(1.901) and 1.3(0.722) does not properly implement session handlers, which allows remote attackers to obtain sensitive information by reading web pages, as demonstrated by MnT reports, aka Bug ID CSCuq23140.

5CVSS6.4AI score0.00261EPSS