Medium
CVSS 4.0
Overview
The Sponsor Portal in Cisco Identity Services Engine (ISE) allows remote authenticated users to obtain access to an arbitrary sponsor's guest account via a modified HTTP request, aka Bug ID CSCur64400.
CVE-2014-8015
The Sponsor Portal in Cisco Identity Services Engine (ISE) allows remote authent...
Risk analysis
This vulnerability is rated 🟡 MEDIUM.
- CVSS: 4.0 (MEDIUM)
- Detected tags: none (tag impact: LOW)
Recommended actions:
- Prioritize remediation based on business criticality and exposure.
- Limit exposure and increase monitoring until fixed.