Global Market

Cisco identifies vulnerability in ISE network access control devices

Cisco

Johannes Ullrich, dean of analysis on the SANS Institute, stated, “Most probably, that is an XML Exterior Entity vulnerability.” Exterior entities, he defined, are an XML function that instructs the parser to both learn native recordsdata or entry exterior URLs. On this case, an attacker might embed an exterior entity within the license file, instructing the XML parser to learn a confidential file and embrace it within the response. It is a frequent vulnerability in XML parsers, he stated, sometimes mitigated by disabling exterior entity parsing.

An attacker would have the ability to acquire learn entry to confidential recordsdata like configuration recordsdata, he added, and probably person credentials. Ullrich additionally stated an ISE administrator could have entry to numerous the data, however they need to not have entry to person credentials.

The Cisco advisory says an attacker might exploit this vulnerability by importing a malicious file to the appliance: “A profitable exploit might permit the attacker to learn arbitrary recordsdata from the underlying working system that would embrace delicate information that ought to in any other case be inaccessible even to directors. To take advantage of this vulnerability, the attacker should have legitimate administrative credentials.”

Cisco stated proof-of-concept exploit code is out there for this vulnerability, however up to now the corporate isn’t conscious of any malicious use of the outlet. 

Today, admin credentials aren’t onerous to get, Harrington famous. The “soiled secret that few individuals wish to discuss is throughout IT and safety operations there are such a lot of techniques which are left with default credentials.” That’s notably frequent, he stated, with gadgets behind a firewall, akin to community entry management servers, as a result of admins suppose as a result of they’re contained in the community they’ll’t be touched by exterior hackers. However plenty of credentials might be scooped up in compromises of functions the place Cisco admins may need saved passwords.

See also  AMD data center chips vulnerable to revealing data through ‘BadRAM’ attack

Associated content material: Cisco warns of three critical ISE vulnerabilities

Source link

TAGGED: , , , , , , ,
Share This Article
Previous Article Marvell to acquire XConn, boosting AI data centre connectivity Marvell to acquire XConn, boosting AI data centre connectivity
Next Article Schneider Electric appoints Matthew Baynes VP of data centre division Schneider Electric appoints Matthew Baynes VP of data centre division
Leave a comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Your Trusted Source for Accurate and Timely Updates!

Our commitment to accuracy, impartiality, and delivering breaking news as it happens has earned us the trust of a vast audience. Stay ahead with real-time updates on the latest events, trends.
- Advertisement -
Ad image

Popular Posts

Why Financial Institutions Need an Agile Cloud Strategy

Information facilities type the muse of our digital world, but many stay anchored in outdated

Qualcomm Enters Data Center AI Chip Market

Qualcomm has unveiled two new AI accelerator chips for the booming knowledge heart market, taking

Voze Raises $12M in Series A Funding

Voze, a Salt Lake Metropolis, UT-based supplier of a gross sales resolution devoted to empowering

BeamXR Raises £532K in Funding

BeamXR, a Newcastle Upon Tyne, UK-based artistic tech firm, raised £532k in funding. The spherical

Sponge-like carbon nanotube thermoelectric generator easily molds to complex shapes and powers sensors

Schematic illustration exhibiting the fabrication technique of the CNT/BST foam with numerous shapes. Results of