Lucene search
CiscoCVE-2013-5521HistoryOct 25, 2013 - 3:52 a.m.
CVE-2013-5521
2013-10-2503:52:54
CWE-264
cisco
web.nvd.nist.gov
34
cisco
ise
denial of service
guest account
cve-2013-5521
nvd
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.8
Confidence
High
EPSS
0.001
Percentile
47.8%
Cisco Identity Services Engine does not properly restrict the creation of guest accounts, which allows remote attackers to cause a denial of service (exhaustion of the account supply) via a series of requests within one session, aka Bug ID CSCue94287.
Affected configurations
Node
ciscoidentity_services_engine_softwareMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | identity_services_engine_software | - | cpe:2.3:a:cisco:identity_services_engine_software:-:*:*:*:*:*:*:* |
Related
cisco
cisco
Cisco Identity Services Engine Guest User Account Exhaustion Vulnerability
2013-10-25 15:00:55
prion
prion
Code injection
2013-10-25 03:52:00
nvd
nvd
CVE-2013-5521
2013-10-25 03:52:54
cvelist
cvelist
CVE-2013-5521
2013-10-25 01:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.8
Confidence
High
EPSS
0.001
Percentile
47.8%
Related for CVE-2013-5521