CVE-2016-1402

Published on: 05/20/2016 12:00:00 AM UTC

Last Modified on: 03/23/2021 11:27:05 PM UTC

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Certain versions of Identity Services Engine from Cisco contain the following vulnerability:

The Active Directory (AD) integration component in Cisco Identity Service Engine (ISE) before 1.2.0.899 patch 7, when AD group-membership authorization is enabled, allows remote attackers to cause a denial of service (authentication outage) via a crafted Password Authentication Protocol (PAP) authentication request, aka Bug ID CSCun25815.

  • CVE-2016-1402 has been assigned by [email protected] to track the vulnerability - currently rated as HIGH severity.

CVSS3 Score: 7.5 - HIGH

Attack
Vector
Attack
Complexity
Privileges
Required
User
Interaction
NETWORK LOW NONE NONE
Scope Confidentiality
Impact
Integrity
Impact
Availability
Impact
UNCHANGED NONE NONE HIGH

CVSS2 Score: 5 - MEDIUM

Access
Vector
Access
Complexity
Authentication
NETWORK LOW NONE
Confidentiality
Impact
Integrity
Impact
Availability
Impact
NONE NONE PARTIAL

CVE References

Description Tags Link
Cisco Identity Services Engine Active Directory Integration Component Remote Denial of Service Vulnerability Vendor Advisory
tools.cisco.com
text/html
URL Logo CISCO 20160517 Cisco Identity Services Engine Active Directory Integration Component Remote Denial of Service Vulnerability
Cisco Identity Services Engine Active Directory Bug Lets Remote Users Deny Service - SecurityTracker www.securitytracker.com
text/html
URL Logo SECTRACK 1035946

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
HardwareCiscoIdentity Services Engine-AllAllAll
HardwareCiscoIdentity Services Engine-AllAllAll
ApplicationCiscoIdentity Services Engine Software1.2.0.899p1AllAll
ApplicationCiscoIdentity Services Engine Software1.2.0.899p2AllAll
ApplicationCiscoIdentity Services Engine Software1.2.0.899p3AllAll
ApplicationCiscoIdentity Services Engine Software1.2.0.899p4AllAll
ApplicationCiscoIdentity Services Engine Software1.2.0.899p5AllAll
ApplicationCiscoIdentity Services Engine Software1.2.0.899p6AllAll
ApplicationCiscoIdentity Services Engine Software1.2.0.899p1AllAll
ApplicationCiscoIdentity Services Engine Software1.2.0.899p2AllAll
ApplicationCiscoIdentity Services Engine Software1.2.0.899p3AllAll
ApplicationCiscoIdentity Services Engine Software1.2.0.899p4AllAll
ApplicationCiscoIdentity Services Engine Software1.2.0.899p5AllAll
ApplicationCiscoIdentity Services Engine Software1.2.0.899p6AllAll
  • cpe:2.3:h:cisco:identity_services_engine:-:*:*:*:*:*:*:*:
  • cpe:2.3:h:cisco:identity_services_engine:-:*:*:*:*:*:*:*:
  • cpe:2.3:a:cisco:identity_services_engine_software:1.2.0.899:p1:*:*:*:*:*:*:
  • cpe:2.3:a:cisco:identity_services_engine_software:1.2.0.899:p2:*:*:*:*:*:*:
  • cpe:2.3:a:cisco:identity_services_engine_software:1.2.0.899:p3:*:*:*:*:*:*:
  • cpe:2.3:a:cisco:identity_services_engine_software:1.2.0.899:p4:*:*:*:*:*:*:
  • cpe:2.3:a:cisco:identity_services_engine_software:1.2.0.899:p5:*:*:*:*:*:*:
  • cpe:2.3:a:cisco:identity_services_engine_software:1.2.0.899:p6:*:*:*:*:*:*:
  • cpe:2.3:a:cisco:identity_services_engine_software:1.2.0.899:p1:*:*:*:*:*:*:
  • cpe:2.3:a:cisco:identity_services_engine_software:1.2.0.899:p2:*:*:*:*:*:*:
  • cpe:2.3:a:cisco:identity_services_engine_software:1.2.0.899:p3:*:*:*:*:*:*:
  • cpe:2.3:a:cisco:identity_services_engine_software:1.2.0.899:p4:*:*:*:*:*:*:
  • cpe:2.3:a:cisco:identity_services_engine_software:1.2.0.899:p5:*:*:*:*:*:*:
  • cpe:2.3:a:cisco:identity_services_engine_software:1.2.0.899:p6:*:*:*:*:*:*: