Vulnerabilities > CVE-2016-9198 - Resource Management Errors vulnerability in Cisco Identity Services Engine 1.2(1.199)

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

cisco

CWE-399

NVD

Published: 2016-12-14

Updated: 2016-12-22

Summary

A vulnerability in the Active Directory integration component of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to perform a denial of service (DoS) attack. More Information: CSCuw15041. Known Affected Releases: 1.2(1.199).

Vulnerable Configurations

Part	Description	Count
Application	Cisco Cisco Identity Services Engine 1.2\(1.199\)	1
Hardware	Cisco Cisco Identity Services Engine -	1

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

References

http://www.securityfocus.com/bid/94810
http://www.securitytracker.com/id/1037415
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-ise