Lucene search
HistorySep 21, 2011 - 4:55 p.m.
CVE-2011-3290
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.7
Confidence
Low
EPSS
0.011
Percentile
84.2%
Cisco Identity Services Engine (ISE) before 1.0.4.MR2 has default Oracle database credentials, which allows remote attackers to modify settings or perform unspecified other administrative actions via unknown vectors, aka Bug ID CSCts59135.
Affected configurations
Node
ciscoidentity_services_engine
ciscoidentity_services_engine_softwareRange≤1.0.4
ORciscoidentity_services_engine_softwareMatch1.0
ORciscoidentity_services_engine_softwareMatch1.0mr
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | identity_services_engine | * | cpe:2.3:h:cisco:identity_services_engine:*:*:*:*:*:*:*:* |
| cisco | identity_services_engine_software | * | cpe:2.3:a:cisco:identity_services_engine_software:*:*:*:*:*:*:*:* |
| cisco | identity_services_engine_software | 1.0 | cpe:2.3:a:cisco:identity_services_engine_software:1.0:*:*:*:*:*:*:* |
| cisco | identity_services_engine_software | 1.0mr | cpe:2.3:a:cisco:identity_services_engine_software:1.0mr:*:*:*:*:*:*:* |
Related
thn
thn
Vulnerability in its Identity Services Engine of Cisco
2011-09-22 01:13:00
cve
cve
CVE-2011-3290
2011-09-21 16:55:04
prion
prion
Design/Logic Flaw
2011-09-21 16:55:00
cvelist
cvelist
CVE-2011-3290
2011-09-21 16:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.7
Confidence
Low
EPSS
0.011
Percentile
84.2%
Related for NVD:CVE-2011-3290