Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

Cisco Identity Services Engine Unauthorized Access Vulnerability

Severity

Medium

Family

CISCO

CVSSv2 Base

6.8

CVSSv2 Vector

AV:N/AC:L/Au:S/C:N/I:C/A:N

Solution Type

Vendor Patch

Created

8 years ago

Modified

5 years ago

Cisco Identity Services Engine versions prior to 2.0 contain a vulnerability that could allow a low-privileged authenticated, remote attacker to access specific web resources that are designed to be accessed only by higher-privileged administrative users.

Insight

The vulnerability occurs because specific types of web resources are not correctly filtered for administrative users with different privileges.

Detection Method

Checks if a vulnerable version is present on the target host.

Solution

Cisco has released software updates that address these vulnerabilities.

Common Vulnerabilities and Exposures (CVE)

CVE-2015-6317

References

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/c

Free and open-source vulnerability scanner

Available for macOS, Windows, and Linux

Cisco Identity Services Engine Unauthorized Access Vulnerability

Information

Severity

Severity

Family

Family

CVSSv2 Base

CVSSv2 Base

CVSSv2 Vector

CVSSv2 Vector

Solution Type

Solution Type

Created

Created

Modified

Modified

Share

Summary

Insight

Insight

Detection Method

Detection Method

Solution

Solution

Common Vulnerabilities and Exposures (CVE)

References