CVE-2015-6323 - The Admin portal in Cisco Identity Services Engine (ISE) 1.1.x, 1.2.0 before patch 17, 1.2.1 before

CVE-2015-6323

Summary

The Admin portal in Cisco Identity Services Engine (ISE) 1.1.x, 1.2.0 before patch 17, 1.2.1 before patch 8, 1.3 before patch 5, and 1.4 before patch 4 allows remote attackers to obtain administrative access via unspecified vectors, aka Bug ID CSCuw34253.

References

Vulnerable Configurations

cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p1:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p1:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p2:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p2:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p3:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p3:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p4:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p4:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p5:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p5:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p6:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p6:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p1:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p1:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p2:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p2:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p3:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p3:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p4:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p4:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p5:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p5:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p6:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p6:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p7:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p7:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p8:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p8:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p9:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p9:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p1:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p1:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p2:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p2:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p3:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p3:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p4:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p4:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p5:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p5:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p6:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p6:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p7:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p7:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p1:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p1:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p2:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p2:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p3:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p3:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p4:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p4:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p5:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p5:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p6:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p6:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p7:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p7:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1_base:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.1_base:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2\(0.747\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2\(0.747\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2\(0.793\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2\(0.793\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2\(1.198\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2\(1.198\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2\(1.901\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2\(1.901\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2.0.899:p14:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2.0.899:p14:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2.1:p1:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2.1:p1:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2.1:p2:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2.1:p2:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2_base:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.2_base:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.3\(0.722\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.3\(0.722\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.3\(0.876\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.3\(0.876\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.3\(106.146\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.3\(106.146\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.3\(120.135\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.3\(120.135\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.4\(0.109\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.4\(0.109\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.4\(0.181\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.4\(0.181\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.4\(0.253\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.4\(0.253\):*:*:*:*:*:*:*

CVSS

Base:	10.0 (as of 07-12-2016 - 18:19)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:L/Au:N/C:C/I:C/A:C

refmap via4

cisco	20160113 Cisco Identity Services Engine Unauthorized Access Vulnerability
sectrack	1034666

Last major update

07-12-2016 - 18:19

Published

15-01-2016 - 03:59

Last modified

07-12-2016 - 18:19