The vulnerability in Cisco Identity Services Engine (ISE) is classified as a Denial of Service (DoS) exploit and affects versions 3.4.0 through 3.4 Patch 3. The flaw arises from how ISE handles repeated failures from rejected endpoints. Attackers can exploit the system, which requires no authentication credentials, leading to unexpected system restarts. When the system crashes, it creates a significant impact on network access control and may cause authentication issues for legitimate users.
Cisco has provided options to mitigate this threat. Users are advised to disable the vulnerable RADIUS requests setting immediately. However, organizations should re-enable it after upgrading to Patch 4 or later for continued security. Administrators are encouraged to verify their configurations to ensure the system’s integrity. This vulnerability emphasizes the importance of maintaining the latest security patches and system configurations to prevent potential disruptions to business operations.
👉 Pročitaj original: Cyber Security News
