#VU9085 Privilege escalation in Cisco Identity Services Engine (ISE) - CVE-2017-12261
Published: November 2, 2017
Vulnerability identifier: #VU9085
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2017-12261
CWE-ID: CWE-20
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vulnerable software:
Cisco Identity Services Engine (ISE)
Cisco Identity Services Engine (ISE)
Software vendor:
Cisco Systems, Inc
Cisco Systems, Inc
Description
The vulnerability allows a local attacker to gain elevated privileges on the target system.
The weakness exists in the restricted shell of the Cisco Identity Services Engine (ISE) that is accessible via SSH due to incomplete input validation of the user input for CLI commands issued at the restricted shell. A local attacker can use valid user credentials and run arbitrary CLI commands with elevated privileges.
The weakness exists in the restricted shell of the Cisco Identity Services Engine (ISE) that is accessible via SSH due to incomplete input validation of the user input for CLI commands issued at the restricted shell. A local attacker can use valid user credentials and run arbitrary CLI commands with elevated privileges.
Remediation
Install update from vendor's website (1.4 patch 12, 2.0 patch 6, 2.1 patch 5, 2.2.0 patch 2).