CVE-2015-6323

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2015-6323
The Admin portal in Cisco Identity Services Engine (ISE) 1.1.x, 1.2.0 before patch 17, 1.2.1 before patch 8, 1.3 before patch 5, and 1.4 before patch 4 allows remote attackers to obtain administrative access via unspecified vectors, aka Bug ID CSCuw34253.

9.8 /10

CVSS v3.0 : CRITICAL

V3 Legend

Vector : AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

10.0 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160113-ise Vendor Advisory
http://www.securitytracker.com/id/1034666
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p7:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p6:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p5:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p4:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p6:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p5:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p4:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p3:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p2:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.3\(106.146\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.3\(0.722\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p7:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p5:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p1:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p2:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2\(0.793\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p7:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p1:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p9:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2\(1.198\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2.1:p2:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p2:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p6:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p1:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2.1:p1:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2\(0.747\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p8:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.3\(120.135\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.4\(0.109\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p6:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p4:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p3:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1_base:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.3\(0.876\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p2:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2_base:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2\(1.901\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p4:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2.0.899:p14:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.4\(0.181\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p3:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p1:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p5:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p3:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.4\(0.253\):*:*:*:*:*:*:*
Information

Published : 2016-01-14 19:59

Updated : 2016-12-07 10:19

NVD link : CVE-2015-6323

Mitre link : CVE-2015-6323

JSON object : View

CWE
NVD-CWE-noinfo
Advertisement

dedicated server usa
Products Affected

cisco

  • identity_services_engine_software