10

CVE-2025-20282

Medienbericht

EPSS 0.59%
Veröffentlicht 25.06.2025 16:29:12
Zuletzt bearbeitet 26.06.2025 20:35:33
Quelle psirt@cisco.com
CVE-Watchlists
Login
Unerledigt
Login

Cisco ISE API Unauthenticated Remote Code Execution Vulnerability

A vulnerability in an internal API of Cisco ISE and Cisco ISE-PIC could allow an unauthenticated, remote attacker to upload arbitrary files to an affected device and then execute those files on the underlying operating system as root.

This vulnerability is due a lack of file validation checks that would prevent uploaded files from being placed in privileged directories on an affected system. An attacker could exploit this vulnerability by uploading a crafted file to the affected device. A successful exploit could allow the attacker to store malicious files on the affected system and then execute arbitrary code or obtain root privileges on the system.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 7

NVD 4 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Cisco ≫ Identity Services Engine Version3.4.0 Update-

Cisco ≫ Identity Services Engine Version3.4.0 Updatepatch1

Cisco ≫ Identity Services Engine Passive Identity Connector Version3.4.0 Update-

Cisco ≫ Identity Services Engine Passive Identity Connector Version3.4.0 Updatepatch1

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.59%	0.693

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
psirt@cisco.com	10	3.9	6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

CWE-269 Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

https://www.heise.de/news/Root-Sicherheitsluecken-mit-Hoechstwertung-bedrohen-Cisco-Identity-Services-Engine-10460270.html

Media Report

https://www.heise.de/news/Weitere-kritische-Luecke-in-Ciscos-ISE-10490589.html

Media Report

https://www.heise.de/news/Cisco-Identity-Services-Engine-Angriff-auf-alte-Luecken-jetzt-Update-nachholen-10497006.html

Media Report

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-unauth-rce-ZAd2GnJ6

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-20282

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-20282

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-20282

EUVD