Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-8017

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2014-8017
Last Modified 23 Dec 2014 09:37:00
Published 22 Dec 2014 02:59:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-8017

Summary

The periodic-backup feature in Cisco Identity Services Engine (ISE) allows remote attackers to discover backup-encryption passwords via a crafted request that triggers inclusion of a password in a reply, aka Bug ID CSCur41673.

Vulnerable Systems

Application

  • Cisco Identity Services Engine Software -


References

CISCO - 20141222 Cisco Identity Services Engine Periodic Backup Password Disclosure Vulnerability


Last Updated: 27 May 2016 11:07:21