Symptom
Cisco Identity Services Engine (ISE) includes a version of the Redhat Linux
Kernelt that is affected by the vulnerabilities identified by the following
Common Vulnerability and Exposures (CVE) IDs:
CVE-2015-2806, CVE-2017-8890, CVE-2016-7117, CVE-2016-9555, CVE-2017-7895,
CVE-2017-11176, CVE-2017-14491, CVE-2014-9761
This bug was opened to address the potential impact on this product.
Conditions
Device with default configuration.
Workaround
Not currently available.
Further Problem Description
Additional details about the vulnerabilities listed above can be found at
http://cve.mitre.org/cve/cve.html
PSIRT Evaluation:
The Cisco PSIRT has assigned this bug the following CVSS version 3 score. The Base CVSS score as of the time of evaluation is 9.8:
https://tools.cisco.com/security/center/cvssCalculator.x?version=3.0&vector=CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:X/RL:X/RC:X
CVE ID CVE-2015-2806, CVE-2017-8890, CVE-2016-7117, CVE-2016-9555, CVE-2017-7895, CVE-2017-11176,
CVE-2017-14491, CVE-2014-9761 has been assigned to document this issue.
Additional information on Cisco's security vulnerability policy can be found at the following URL:
http://www.cisco.com/en/US/products/products_security_vulnerability_policy.html
