CVE-2015-6323

The Admin portal in Cisco Identity Services Engine (ISE) 1.1.x, 1.2.0 before patch 17, 1.2.1 before patch 8, 1.3 before patch 5, and 1.4 before patch 4 allows remote attackers to obtain administrative access via unspecified vectors, aka Bug ID CSCuw34253.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 85%
VendorProductVersion
ciscoidentity_services_engine_software
1.1.1
ciscoidentity_services_engine_software
1.1.1:p1
ciscoidentity_services_engine_software
1.1.1:p2
ciscoidentity_services_engine_software
1.1.1:p3
ciscoidentity_services_engine_software
1.1.1:p4
ciscoidentity_services_engine_software
1.1.1:p5
ciscoidentity_services_engine_software
1.1.1:p6
ciscoidentity_services_engine_software
1.1.2
ciscoidentity_services_engine_software
1.1.2:p1
ciscoidentity_services_engine_software
1.1.2:p2
ciscoidentity_services_engine_software
1.1.2:p3
ciscoidentity_services_engine_software
1.1.2:p4
ciscoidentity_services_engine_software
1.1.2:p5
ciscoidentity_services_engine_software
1.1.2:p6
ciscoidentity_services_engine_software
1.1.2:p7
ciscoidentity_services_engine_software
1.1.2:p8
ciscoidentity_services_engine_software
1.1.2:p9
ciscoidentity_services_engine_software
1.1.3
ciscoidentity_services_engine_software
1.1.3:p1
ciscoidentity_services_engine_software
1.1.3:p2
ciscoidentity_services_engine_software
1.1.3:p3
ciscoidentity_services_engine_software
1.1.3:p4
ciscoidentity_services_engine_software
1.1.3:p5
ciscoidentity_services_engine_software
1.1.3:p6
ciscoidentity_services_engine_software
1.1.3:p7
ciscoidentity_services_engine_software
1.1.4
ciscoidentity_services_engine_software
1.1.4:p1
ciscoidentity_services_engine_software
1.1.4:p2
ciscoidentity_services_engine_software
1.1.4:p3
ciscoidentity_services_engine_software
1.1.4:p4
ciscoidentity_services_engine_software
1.1.4:p5
ciscoidentity_services_engine_software
1.1.4:p6
ciscoidentity_services_engine_software
1.1.4:p7
ciscoidentity_services_engine_software
1.1_base:_base
ciscoidentity_services_engine_software
1.2\(0.747\)
ciscoidentity_services_engine_software
1.2\(0.793\)
ciscoidentity_services_engine_software
1.2\(1.198\)
ciscoidentity_services_engine_software
1.2\(1.901\)
ciscoidentity_services_engine_software
1.2.0.899:p14
ciscoidentity_services_engine_software
1.2.1
ciscoidentity_services_engine_software
1.2.1:p1
ciscoidentity_services_engine_software
1.2.1:p2
ciscoidentity_services_engine_software
1.2_base:_base
ciscoidentity_services_engine_software
1.3\(0.722\)
ciscoidentity_services_engine_software
1.3\(0.876\)
ciscoidentity_services_engine_software
1.3\(106.146\)
ciscoidentity_services_engine_software
1.3\(120.135\)
ciscoidentity_services_engine_software
1.4\(0.109\)
ciscoidentity_services_engine_software
1.4\(0.181\)
ciscoidentity_services_engine_software
1.4\(0.253\)
𝑥
= Vulnerable software versions
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160113-ise
http://www.securitytracker.com/id/1034666
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160113-ise
http://www.securitytracker.com/id/1034666