CVE-2017-3835

Summary

A vulnerability in the sponsor portal of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to access notices owned by other users, because of SQL Injection. More Information: CSCvb15627. Known Affected Releases: 1.4(0.908).

Affected Software

VendorProductVersion RangeStatus
n/aCisco Identity Services EngineCisco Identity Services Engineaffected

Weaknesses

  • SQL Injection Vulnerability

ADP Enrichment

CVE Program Container

Additional References

References