Vulnerability Details CVE-2016-6453
A vulnerability in the web framework code of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execute arbitrary SQL commands on the database. More Information: CSCva46542. Known Affected Releases: 1.3(0.876).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 50.7%
CVSS Severity
CVSS v3 Score 7.3
CVSS v2 Score 4.9
References
- http://www.securityfocus.com/bid/93897
- http://www.securitytracker.com/id/1037109
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161026-ise
- http://www.securityfocus.com/bid/93897
- http://www.securitytracker.com/id/1037109
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161026-ise
Products affected by CVE-2016-6453
-
cpe:2.3:a:cisco:identity_services_engine:1.3(0.876)