CVE-2017-12316

Severity Score

7.5

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

A vulnerability in the Guest Portal login page of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to perform multiple login attempts in excess of the configured login attempt limit. The vulnerability is due to insufficient server-side login attempt limit enforcement. An attacker could exploit this vulnerability by sending modified login attempts to the Guest Portal login page. An exploit could allow the attacker to perform brute-force password attacks on the ISE Guest Portal. Cisco Bug IDs: CSCve98518.

Una vulnerabilidad en la página de inicio de sesión de Guest Portal en Cisco Identity Services Engine (ISE) podría permitir que un atacante remoto sin autenticar realice múltiples intentos de inicio de sesión excediendo el límite de intentos de inicio de sesión configurado. La vulnerabilidad se debe a la aplicación insuficiente de límite de inicios de sesión del lado del servidor. Un atacante podría explotar esta vulnerabilidad enviando intentos de inicio de sesión modificados a la página de inicio de sesión de Guest Portal. Un exploit podría permitir que el atacante lleve a cabo ataques de contraseña por fuerza bruta en el Guest Portal de ISE. Cisco Bug IDs: CSCve98518.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2017-08-03 CVE Reserved
2017-11-16 CVE Published
2024-08-05 CVE Updated
2025-03-30 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-287: Improper Authentication
CWE-307: Improper Restriction of Excessive Authentication Attempts

CAPEC

References (3)

URL	Tag	Source
http://www.securityfocus.com/bid/101931	Third Party Advisory
http://www.securitytracker.com/id/1039830	Third Party Advisory

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171115-ise	2019-10-09

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Cisco Search vendor "Cisco"		Identity Services Engine Software Search vendor "Cisco" for product "Identity Services Engine Software"				2.1\(0.229\) Search vendor "Cisco" for product "Identity Services Engine Software" and version "2.1\(0.229\)"		-		Affected