What is CVE-2017-12261?

CVE-2017-12261 is a high-severity vulnerability in Cisco Identity_services_engine, classified under CWE-264. CVSS score: 7.8/10. Published 2017-11-02.

How severe is CVE-2017-12261?

High severity. CVSS v3 base score is 7.8 out of 10.

Auth bypass in Cisco Identity_services_engine

CVE-2017-12261

A vulnerability in the restricted shell of the Cisco Identity Services Engine (ISE) that is accessible via SSH could allow an authenticated, local attacker to run arbitrary CLI commands with elevated privileges. The vulnerability is due to…

EPSS: 0.000 (14.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Cisco Identity_services_engine — versions 1.4, 2.0, 2.0.1
Cisco Identity_services_engine_express — versions 1.4, 2.0, 2.0.1
Cisco Identity_services_engine_virtual_appliance — versions 1.4, 2.0, 2.0.1
N/a Cisco Identity Services Engine — versions Cisco Identity Services Engine

Weakness classification (CWE)

References

psirt@cisco.com (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)
psirt@cisco.com (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_SECTRACK)
psirt@cisco.com (x_refsource_CONFIRM, Vendor Advisory)

Frequently asked questions

What is CVE-2017-12261?: CVE-2017-12261 is a high-severity vulnerability in Cisco Identity_services_engine, classified under CWE-264. CVSS score: 7.8/10. Published 2017-11-02.
How severe is CVE-2017-12261?: High severity. CVSS v3 base score is 7.8 out of 10.