Unrated severityNVD Advisory· Published May 26, 2014· Updated Jun 17, 2026
CVE-2014-3275
CVE-2014-3275
Description
SQL injection vulnerability in the web framework in Cisco Identity Services Engine (ISE) 1.2(.1 patch 2) and earlier allows remote authenticated users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCul21337.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:cisco:identity_services_engine_software:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:cisco:identity_services_engine_software:*:*:*:*:*:*:*:*range: <=1.2
- cpe:2.3:a:cisco:identity_services_engine_software:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1:*:*:*:*:*:*:*
- (no CPE)range: <=1.2(.1 patch 2)
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.