Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1379
Views
5
Helpful
1
Replies

Is Cisco ISE affected by polkit Vunlerability

sureshvn1981@gmail.com
Level 1
Level 1

‎01-31-2022 04:05 AM

Hello Support,

Rapid 7 tool flagged Cisco ISE running 3.0 as vulnerable (CVE-2021-4034). No match found in Cisco advisory for this CVE.

The Cisco open-source document for ISE 3.x stated it uses two polkit packages that related to the vulnerability, however Cisco restricted the root access. Kindly advise.

0 Helpful
1 Reply 1

marce1000
VIP
VIP

‎01-31-2022 06:44 AM

 

 - FYI : https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvu37746

 M.



-- ' 'Good body every evening' ' this sentence was once spotted on a logo at the entrance of a Weight Watchers Club !
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents