CVE-2015-6323
Description
Cisco ISE Admin portal contains an unspecified, unauthenticated remote vulnerability allowing full device compromise.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Cisco ISE Admin portal contains an unspecified, unauthenticated remote vulnerability allowing full device compromise.
Vulnerability
An unspecified vulnerability exists in the Admin portal of Cisco Identity Services Engine (ISE) software. Affected versions include ISE 1.1.x, 1.2.0 before patch 17, 1.2.1 before patch 8, 1.3 before patch 5, and 1.4 before patch 4. The vulnerability resides in the web-based administrative interface and does not require authentication or any special configuration to be reachable [1].
Exploitation
An attacker must be able to connect to the Admin portal over the network. No authentication or user interaction is required. The attack vector is not fully detailed in available references, but the advisory states that an attacker who can connect to the Admin portal can exploit this vulnerability. No specific sequence of steps is described beyond making a network connection to the affected service [1].
Impact
Successful exploitation grants an attacker complete unauthorized administrative access to the affected Cisco ISE device. This effectively results in full compromise of the device, including the ability to read, modify, or delete all data, and potentially use the device as a pivot point within the network [1].
Mitigation
Cisco has released software updates that address this vulnerability. Patches are available for each affected version: patch 17 for 1.2.0, patch 8 for 1.2.1, patch 5 for 1.3, and patch 4 for 1.4. Users of version 1.1.x must upgrade to a fixed version. There are no workarounds. Customers should apply the appropriate patch or upgrade immediately [1].
AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
51cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:*:*:*:*:*:*:*+ 50 more
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p1:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p2:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p3:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p4:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p5:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.1:p6:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p1:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p2:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p3:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p4:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p5:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p6:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p7:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p8:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.2:p9:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p1:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p2:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p3:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p4:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p5:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p6:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.3:p7:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p1:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p2:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p3:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p4:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p5:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p6:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1.4:p7:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.1_base:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.2\(0.747\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.2\(0.793\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.2.0.899:p14:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.2\(1.198\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.2\(1.901\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.2.1:p1:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.2.1:p2:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.2_base:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.3\(0.722\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.3\(0.876\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.3\(106.146\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.3\(120.135\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.4\(0.109\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.4\(0.181\):*:*:*:*:*:*:*
- cpe:2.3:a:cisco:identity_services_engine_software:1.4\(0.253\):*:*:*:*:*:*:*
- (no CPE)range: 1.1.x, 1.2.0 before patch 17, 1.2.1 before patch 8, 1.3 before patch 5, 1.4 before patch 4
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2News mentions
0No linked articles in our index yet.