Vulnerabilities > CVE-2013-5540 - Resource Management Errors vulnerability in Cisco products

CVSS 6.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

cisco

CWE-399

NVD

Published: 2013-10-16

Updated: 2013-10-16

Summary

The file-upload feature in Cisco Identity Services Engine (ISE) allows remote authenticated users to cause a denial of service (disk consumption and administration-interface outage) by uploading many files, aka Bug ID CSCui67519.

Vulnerable Configurations

Part	Description	Count
Application	Cisco Cisco Identity Services Engine Software -	1
Hardware	Cisco Cisco Identity Services Engine -	1

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

References

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5540