Cisco Identity Services Engine Authenticated Privilege Escalation Vulnerability — CISCO-SA-ISE-CMD-INJ-5WSJCYJB

Summary

A vulnerability in the CLI of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, local attacker with administrative privileges to perform a command injection attack on the underlying operating system and elevate privileges to root . This vulnerability is due to insufficient validation of user supplied input. An attacker could exploit this…

Product

Cisco Identity Services Engine Authenticated Privilege Escalation

What to do

General, cautious steps (verify details in the official source):

• Review exposure and plan remediation based on risk and environment.
• Identify affected product versions in your inventory and verify whether you are impacted.
• Apply vendor patches/updates or recommended mitigations as soon as available.
• Read the official advisory for exact affected versions and remediation steps.

Official advisory

• Read the official source
• CVE Record
• NVD

Related advisories