CVE-2015-6323

Name of the Vulnerable Software and Affected Versions Cisco Identity Services Engine versions 1.1.x through 1.4 before patch 4 Cisco Identity Services Engine version 1.2.0 before patch 17 Cisco Identity Services Engine version 1.2.1 before patch 8 Cisco Identity Services Engine version 1.3 before patch 5

Description The issue is related to weaknesses in the authentication procedure of the Cisco Identity Services Engine platform, which can be exploited by remote attackers to obtain administrative access.

Recommendations For Cisco Identity Services Engine version 1.1.x, apply patch 4 or later to resolve the issue. For Cisco Identity Services Engine version 1.2.0, apply patch 17 or later to resolve the issue. For Cisco Identity Services Engine version 1.2.1, apply patch 8 or later to resolve the issue. For Cisco Identity Services Engine version 1.3, apply patch 5 or later to resolve the issue. For Cisco Identity Services Engine version 1.4, apply patch 4 or later to resolve the issue.