Unrated severityNVD Advisory· Published Sep 21, 2011· Updated Apr 29, 2026

CVE-2011-3290

Description

Cisco Identity Services Engine (ISE) before 1.0.4.MR2 has default Oracle database credentials, which allows remote attackers to modify settings or perform unspecified other administrative actions via unknown vectors, aka Bug ID CSCts59135.

Affected products

Cisco Systems, Inc./Identity Services Engine
cpe:2.3:h:cisco:identity_services_engine:*:*:*:*:*:*:*:*
Cisco Systems, Inc./Identity Services Engine Software3 versions
cpe:2.3:a:cisco:identity_services_engine_software:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:cisco:identity_services_engine_software:*:*:*:*:*:*:*:*range: <=1.0.4
- cpe:2.3:a:cisco:identity_services_engine_software:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.0mr:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000