Identity Services Engine Software@1.3(106.146) Security Vulnerabilities and Issues — Identity Services Engine Software@1.3(106.146) CVE List

Lucene search

CiscoIdentity Services Engine Software1.3(106.146)

3 matches found

CVE•added 2016/01/15 3:59 a.m.•52 views

CVE-2015-6323

The Admin portal in Cisco Identity Services Engine (ISE) 1.1.x, 1.2.0 before patch 17, 1.2.1 before patch 8, 1.3 before patch 5, and 1.4 before patch 4 allows remote attackers to obtain administrative access via unspecified vectors, aka Bug ID CSCuw34253.

10CVSS9.3AI score0.01486EPSS

CVE•added 2015/07/16 7:59 p.m.•43 views

CVE-2015-4266

The web interface in Cisco Identity Services Engine (ISE) 1.1(4.1), 1.3(106.146), and 1.3(120.135) does not properly restrict use of IFRAME elements, which makes it easier for remote attackers to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related to a "cross-...

4.3CVSS6.5AI score0.00217EPSS

CVE•added 2016/01/23 5:59 a.m.•41 views

CVE-2015-6317

Cisco Identity Services Engine (ISE) before 2.0 allows remote authenticated users to bypass intended web-resource access restrictions via a direct request, aka Bug ID CSCuu45926.

6.8CVSS6.1AI score0.00139EPSS