Incorrect Privilege Assignment in Cisco Identity Services Engine (ISE)

#VU50777 Incorrect Privilege Assignment in Cisco Identity Services Engine (ISE)

Published: 2021-02-17

Vulnerability identifier: #VU50777

Vulnerability risk: Low

CVSSv3.1: 3.8 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-1412

CWE-ID: CWE-266

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Cisco Identity Services Engine (ISE)
Server applications / Other server solutions

Vendor: Cisco Systems, Inc

Description

The vulnerability allows a remote user to gain access to sensitive information.

The vulnerability exists due to incorrect access restrictions within the Admin portal of Cisco ISE. A remote authenticated user can obtain system information.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Cisco Identity Services Engine (ISE): 2.0.0 - 3.0P1

External links
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-info-exp-8RsuEu8S
http://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw81454
http://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw82927
http://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw89818

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Information disclosure in Cisco Identity Services Engine (ISE)