First published: Sun Sep 16 2012(Updated: )
Multiple cross-site request forgery (CSRF) vulnerabilities in the ISE Administrator user interface (aka the Apache Tomcat interface) on Cisco Identity Services Engine (ISE) 3300 series appliances before 1.1.0.665 Cumulative Patch 1 allow remote attackers to hijack the authentication of administrators, aka Bug ID CSCty46684.
Credit: ykramarz@cisco.com
Affected Software | Affected Version | How to fix |
---|---|---|
Cisco Identity Services Engine Software | =1.0 | |
Cisco Identity Services Engine Software | =1.0.4 | |
Cisco Identity Services Engine Software | =1.0mr | |
Cisco Identity Services Engine Software | =1.1 | |
Cisco Identity Services Engine Software | =1.1.1 | |
Cisco Identity Services Engine | =3300 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.