Cisco patches two critical Identity Services Engine flaws
One gives root access, the other lets you steal info and reconfig nodes, in the right (or should that be wrong) circumstances Cisco has fixed two critical vulnerabilities in its Identity Services Engine (ISE) that could allow an authenticated remote attacker to execute arbitrary commands as root or access sensitive information, modify configurations, and reload affected devices....