ISE 3.1 ( 3.001(000.518) a/k/a 3.1.0.518) is listed as vulnerable, and the current patch that is available is showing for ISE 2.4-3.0. When will an ISE 3.1 patch become available?
Also, a public service announcement: the 3.0 patch doesn't work on ISE 3.1 in case you get impatient like me.
I attempted to install 2.4-3.0 patch on ISE 3.1, and the install worked, but ISE wouldn't start after the install with the following error:
PAN01/admin# application start ise
% Error: ISE Integrity Check Failed! One or more ISE program files appears to
% be tampered with. Check system log for specific error(s).
% Application failed to start
ISE Started without issue after rollback of the patch.
