cvelist/2011/3xxx/CVE-2011-3290.json

{
    "CVE_data_meta": {
        "ASSIGNER": "psirt@cisco.com",
        "ID": "CVE-2011-3290",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "n/a",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "n/a"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "n/a"
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "Cisco Identity Services Engine (ISE) before 1.0.4.MR2 has default Oracle database credentials, which allows remote attackers to modify settings or perform unspecified other administrative actions via unknown vectors, aka Bug ID CSCts59135."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "n/a"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "46061",
                "refsource": "SECUNIA",
                "url": "http://secunia.com/advisories/46061"
            },
            {
                "name": "cisco-ise-default-credentials(69945)",
                "refsource": "XF",
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/69945"
            },
            {
                "name": "20110920 Cisco Identity Services Engine Database Default Credentials Vulnerability",
                "refsource": "CISCO",
                "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b95105.shtml"
            },
            {
                "name": "1026075",
                "refsource": "SECTRACK",
                "url": "http://www.securitytracker.com/id?1026075"
            },
            {
                "name": "49703",
                "refsource": "BID",
                "url": "http://www.securityfocus.com/bid/49703"
            }
        ]
    }
}