Multiple cross-site request forgery (CSRF) vulnerabilities in the ISE Administrator user interface (aka the Apache Tomcat interface) on Cisco Identity Services Engine (ISE) 3300 series appliances prior to 1.1.0.665 Cumulative Patch 1 allow remote malicious users to hijack the authentication of administrators, aka Bug ID CSCty46684.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco identity_services_engine_software 1.0 |
||
cisco identity_services_engine_software 1.0.4 |
||
cisco identity_services_engine_software 1.1.1 |
||
cisco identity_services_engine_software 1.0mr |
||
cisco identity_services_engine_software 1.1 |
||
cisco identity_services_engine 3300 |