Cisco has revealed a critical security vulnerability in its Identity Services Engine (ISE) and Passive Identity Connector, allowing unauthenticated attackers to execute arbitrary code with root privileges. The issue, identified as CVE-2025-20337, has been patched in recent releases and emphasizes the importance of timely updates to prevent exploitation. #CiscoISE #CVE202520337
Keypoints
- Cisco disclosed a high-severity vulnerability in its ISE and ISE-PIC affecting versions 3.3 and 3.4.
- The flaw allows remote, unauthenticated attackers to execute arbitrary code with root privileges.
- The vulnerability is due to insufficient input validation in a specific API.
- It has been patched in Cisco ISE 3.3 Patch 7 and 3.4 Patch 2 releases.
- The Shadowserver Foundation reports threat actors exploiting related vulnerabilities like CVE-2025-25257 to attack Fortinet FortiWeb devices.
Read More: https://thehackernews.com/2025/07/cisco-warns-of-critical-ise-flaw.html