CVE-2015-4267

Name of the Vulnerable Software and Affected Versions Cisco Identity Services Engine versions 1.2(0.793) through 2.0(0.169)

Description The issue is related to a cross-site request forgery (CSRF) vulnerability in the web framework. This vulnerability allows remote attackers to hijack the authentication of arbitrary users.

Recommendations For versions 1.2(0.793) through 2.0(0.169), at the moment, there is no information about a newer version that contains a fix for this vulnerability.