#VU10903 Improper input validation in Cisco Identity Services Engine (ISE) - CVE-2018-0211

Cybersecurity Help s.r.o.

Published: 2018-03-10

Vulnerability identifier: #VU10903

Vulnerability risk: Low

CVSSv4.0: 4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2018-0211

CWE-ID: CWE-20

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Cisco Identity Services Engine (ISE)
Server applications / Other server solutions

Vendor: Cisco Systems, Inc

Description
The vulnerability allows a local attacker with administrative privileges to cause DoS condition on the target system.

The weakness exists in specific CLI commands for the Cisco Identity Services Engine due to lack of proper input validation of the CLI user input for certain CLI commands. A local attacker can authenticate to the device and issue a specially crafted, malicious CLI command and cause a DoS condition.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Cisco Identity Services Engine (ISE): 2.1.0.474 - 2.4.0.247

External links
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180307-ise

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Cisco Identity Services Engine