Details of VAR-201708-1343

ID

VAR-201708-1343

CVE

CVE-2017-6747

TITLE

Cisco Identity Services Engine Authentication vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2017-006807

DESCRIPTION

A vulnerability in the authentication module of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to bypass local authentication. The vulnerability is due to improper handling of authentication requests and policy assignment for externally authenticated users. An attacker could exploit this vulnerability by authenticating with a valid external user account that matches an internal username and incorrectly receiving the authorization policy of the internal account. An exploit could allow the attacker to have Super Admin privileges for the ISE Admin portal. This vulnerability does not affect endpoints authenticating to the ISE. The vulnerability affects Cisco ISE, Cisco ISE Express, and Cisco ISE Virtual Appliance running Release 1.3, 1.4, 2.0.0, 2.0.1, or 2.1.0. Release 2.2.x is not affected. Cisco Bug IDs: CSCvb10995. Vendors have confirmed this vulnerability Bug ID CSCvb10995 It is released as.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. An attacker can exploit this issue to bypass the authentication mechanism and obtains sensitive information. This may lead to further attacks. The platform monitors the network by collecting real-time information on the network, users and devices, and formulating and implementing corresponding policies. ISE Express is a stripped down version of it. authentication moudle is one of the authentication modules. 0 version; ISE Virtual Appliance version 1.3, 1.4, 2.0.0, 2.0.1, 2.1.0

Trust: 1.98

sources: NVD: CVE-2017-6747 // JVNDB: JVNDB-2017-006807 // BID: 100105 // VULHUB: VHN-114950

AFFECTED PRODUCTS

vendor:	cisco	model:	identity services engine	scope:	eq	version:	1.3\(120.135\)	Trust: 1.6
vendor:	cisco	model:	identity services engine	scope:	eq	version:	2.1\(0.474\)	Trust: 1.6
vendor:	cisco	model:	identity services engine	scope:	eq	version:	1.3\(0.909\)	Trust: 1.6
vendor:	cisco	model:	identity services engine	scope:	eq	version:	2.0\(0.169\)	Trust: 1.6
vendor:	cisco	model:	identity services engine	scope:	eq	version:	1.4\(0.109\)	Trust: 1.6
vendor:	cisco	model:	identity services engine	scope:	eq	version:	2.0\(1.130\)	Trust: 1.6
vendor:	cisco	model:	identity services engine	scope:	eq	version:	2.0\(0.147\)	Trust: 1.6
vendor:	cisco	model:	identity services engine	scope:	eq	version:	1.3\(0.876\)	Trust: 1.6
vendor:	cisco	model:	identity services engine	scope:	eq	version:	1.4\(0.253\)	Trust: 1.6
vendor:	cisco	model:	identity services engine	scope:	eq	version:	2.1\(0.800\)	Trust: 1.6
vendor:	cisco	model:	identity services engine	scope:	eq	version:	1.4\(0.908\)	Trust: 1.0
vendor:	cisco	model:	identity services engine	scope:	eq	version:	2.1_base	Trust: 1.0
vendor:	cisco	model:	identity services engine	scope:	eq	version:	1.3\(0.722\)	Trust: 1.0
vendor:	cisco	model:	identity services engine	scope:	eq	version:	2.0\(0.222\)	Trust: 1.0
vendor:	cisco	model:	identity services engine	scope:	eq	version:	1.3\(106.146\)	Trust: 1.0
vendor:	cisco	model:	identity services engine	scope:	eq	version:	2.1\(102.101\)	Trust: 1.0
vendor:	cisco	model:	identity services engine	scope:	eq	version:	1.4\(0.181\)	Trust: 1.0
vendor:	cisco	model:	identity services engine	scope:	eq	version:	2.0_base	Trust: 1.0
vendor:	cisco	model:	identity services engine	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	identity services engine virtual appliance	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	identity services engine express	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	identity services engine series appliances	scope:	eq	version:	33002.1(0.474)	Trust: 0.3
vendor:	cisco	model:	identity services engine series appliances	scope:	eq	version:	33002.0(0.306)	Trust: 0.3
vendor:	cisco	model:	identity services engine series appliances	scope:	eq	version:	33001.4(0.253)	Trust: 0.3
vendor:	cisco	model:	identity services engine series appliances	scope:	eq	version:	33001.3(0.876)	Trust: 0.3
vendor:	cisco	model:	identity services engine	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	identity services engine series appliances	scope:	ne	version:	33002.1(0.902)	Trust: 0.3
vendor:	cisco	model:	identity services engine series appliances	scope:	ne	version:	33002.0(0.905)	Trust: 0.3

sources: BID: 100105 // JVNDB: JVNDB-2017-006807 // CNNVD: CNNVD-201708-157 // NVD: CVE-2017-6747

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-6747
value:	CRITICAL
Trust: 1.0
NVD:	CVE-2017-6747
value:	CRITICAL
Trust: 0.8
CNNVD:	CNNVD-201708-157
value:	CRITICAL
Trust: 0.6
VULHUB:	VHN-114950
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2017-6747
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-114950
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2017-6747
baseSeverity:	CRITICAL
baseScore:	9.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	5.9
version:	3.0
Trust: 1.8

sources: VULHUB: VHN-114950 // JVNDB: JVNDB-2017-006807 // CNNVD: CNNVD-201708-157 // NVD: CVE-2017-6747

PROBLEMTYPE DATA

problemtype:

CWE-287

Trust: 1.9

sources: VULHUB: VHN-114950 // JVNDB: JVNDB-2017-006807 // NVD: CVE-2017-6747

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201708-157

TYPE

authorization issue

Trust: 0.6

sources: CNNVD: CNNVD-201708-157

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-006807

PATCH

title:	cisco-sa-20170802-ise	url:	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170802-ise	Trust: 0.8
title:	Multiple Cisco product authentication Fixing measures for module authorization problem vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=75158	Trust: 0.6

sources: JVNDB: JVNDB-2017-006807 // CNNVD: CNNVD-201708-157

EXTERNAL IDS

db:	NVD	id:	CVE-2017-6747	Trust: 2.8
db:	SECTRACK	id:	1039054	Trust: 1.7
db:	JVNDB	id:	JVNDB-2017-006807	Trust: 0.8
db:	CNNVD	id:	CNNVD-201708-157	Trust: 0.7
db:	BID	id:	100105	Trust: 0.4
db:	VULHUB	id:	VHN-114950	Trust: 0.1

sources: VULHUB: VHN-114950 // BID: 100105 // JVNDB: JVNDB-2017-006807 // CNNVD: CNNVD-201708-157 // NVD: CVE-2017-6747

REFERENCES

url:	https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20170802-ise	Trust: 2.0
url:	http://www.securitytracker.com/id/1039054	Trust: 1.7
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-6747	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2017-6747	Trust: 0.8
url:	http://www.cisco.com/	Trust: 0.3

sources: VULHUB: VHN-114950 // BID: 100105 // JVNDB: JVNDB-2017-006807 // CNNVD: CNNVD-201708-157 // NVD: CVE-2017-6747

CREDITS

Cisco

Trust: 0.3

sources: BID: 100105

SOURCES

db:	VULHUB	id:	VHN-114950
db:	BID	id:	100105
db:	JVNDB	id:	JVNDB-2017-006807
db:	CNNVD	id:	CNNVD-201708-157
db:	NVD	id:	CVE-2017-6747

LAST UPDATE DATE

2024-11-23T22:52:22.914000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-114950	date:	2019-10-09T00:00:00
db:	BID	id:	100105	date:	2017-08-02T00:00:00
db:	JVNDB	id:	JVNDB-2017-006807	date:	2017-09-04T00:00:00
db:	CNNVD	id:	CNNVD-201708-157	date:	2019-10-17T00:00:00
db:	NVD	id:	CVE-2017-6747	date:	2024-11-21T03:30:26.350

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-114950	date:	2017-08-07T00:00:00
db:	BID	id:	100105	date:	2017-08-02T00:00:00
db:	JVNDB	id:	JVNDB-2017-006807	date:	2017-09-04T00:00:00
db:	CNNVD	id:	CNNVD-201708-157	date:	2017-08-02T00:00:00
db:	NVD	id:	CVE-2017-6747	date:	2017-08-07T06:29:00.357