CVE-2021-34702

Name of the Vulnerable Software and Affected Versions Cisco Identity Services Engine (ISE) (affected versions not specified)

Description A vulnerability in the web-based management interface could allow an authenticated, remote attacker to obtain sensitive information due to improper enforcement of administrator privilege levels for low-value sensitive data. An attacker with read-only administrator access could exploit this by browsing to the page containing sensitive data, potentially collecting configuration information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.