CVE-2015-6317

Опубликовано: 23 янв. 2016

Источник: nvd

CVSS3: 6.5

CVSS2: 6.8

EPSS Низкий

Описание

Cisco Identity Services Engine (ISE) before 2.0 allows remote authenticated users to bypass intended web-resource access restrictions via a direct request, aka Bug ID CSCuu45926.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:cisco:identity_services_engine_software:1.0.4.573:*:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.0_base:*:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.0_mr_base:*:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p1:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p2:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p3:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p4:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p5:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p6:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p1:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p2:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p3:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p4:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p5:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p6:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p7:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p8:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p9:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p1:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p2:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p3:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p4:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p5:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p6:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p7:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p1:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p2:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p3:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p4:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p5:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p6:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p7:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.1_base:*:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.2\(0.747\):*:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.2\(0.793\):*:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.2\(1.198\):*:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.2\(1.901\):*:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.2.0.899:p14:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.2.1:p1:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.2.1:p2:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.2_base:*:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.3\(0.722\):*:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.3\(0.876\):*:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.3\(106.146\):*:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.3\(120.135\):*:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.4\(0.109\):*:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.4\(0.181\):*:*:*:*:*:*:*

cpe:2.3:a:cisco:identity_services_engine_software:1.4\(0.253\):*:*:*:*:*:*:*

EPSS

Процентиль: 34%

0.00139

Низкий

6.5 Medium

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-284

Связанные уязвимости

GHSA-62w6-q6hj-32wh