Описание
Cisco Identity Services Engine (ISE) before 1.0.4.MR2 has default Oracle database credentials, which allows remote attackers to modify settings or perform unspecified other administrative actions via unknown vectors, aka Bug ID CSCts59135.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.0.4 (включая)
Одновременно
cpe:2.3:h:cisco:identity_services_engine:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:a:cisco:identity_services_engine_software:*:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:identity_services_engine_software:1.0mr:*:*:*:*:*:*:*
EPSS
Процентиль: 81%
0.0154
Низкий
10 Critical
CVSS2
Дефекты
CWE-255
Связанные уязвимости
github
больше 3 лет назад
Cisco Identity Services Engine (ISE) before 1.0.4.MR2 has default Oracle database credentials, which allows remote attackers to modify settings or perform unspecified other administrative actions via unknown vectors, aka Bug ID CSCts59135.
EPSS
Процентиль: 81%
0.0154
Низкий
10 Critical
CVSS2
Дефекты
CWE-255