Vulnerability in Cisco Identity_services_engine_software
CVE-2014-3276
Cisco Identity Services Engine (ISE) 1.2(.1 patch 2) and earlier does not properly handle deadlock conditions during reception of crafted RADIUS accounting packets from multiple NAS devices, which allows remote authenticated users to cause…
EPSS: 0.006 (69.5th percentile) — read the EPSS interpretation.
Affected products
- Cisco Identity_services_engine_software — versions 1.0, 1.1
- N/a — versions n/a
Weakness classification (CWE)
References
- 20140521 Cisco ISE RADIUS Service Denial of Service Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)
- psirt@cisco.com (x_refsource_CONFIRM, Vendor Advisory)
- 1030274 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_SECTRACK)