|CERT-In Vulnerability Note
Cisco Identity Services Engine Authentication Bypass Vulnerability
Original Issue Date:August 29, 2017
Severity Rating: HIGH
- Cisco ISE
- Cisco ISE Express
- Cisco ISE Virtual Appliance
A vulnerability in the authentication module of Cisco Identity Services Engine (ISE) allows an unauthenticated, remote attacker to bypass local authentication.
This vulnerability is due to improper handling of authentication requests and policy assignment for externally authenticated users. An attacker could exploit this vulnerability by authenticating with a valid external user account that matches an internal username and incorrectly receiving the authorization policy of the internal account to gain Super Admin privileges on Identity Services Engine (ISE) Admin portal.Systems configured with the ISE Admin portal using an external identity source for authentication are affected.
Apply appropriate updates as mentioned in
The information provided herein is on "as is" basis, without warranty of any kind.
Email: firstname.lastname@example.org Phone: +91-11-24368572
Indian Computer Emergency Response Team (CERT-In)
Ministry of Electronics and Information Technology
Government of India
6, CGO Complex, Lodhi Road,
New Delhi - 110 003