Cisco has announced critical vulnerabilities (CVE-2025-20337 and CVE-2025-20281) in their Identity Services Engine and Passive Identity Connector, which could allow remote attackers to execute code with root privileges. Although no attacks are reported in the wild, users are advised to upgrade to fixed releases to mitigate the risks. #CVE202520337 #CVE202520281
Keypoints
- Cisco disclosed multiple high-severity vulnerabilities affecting its ISE and ISE-PIC products.
- The flaws could allow unauthenticated remote attackers to run arbitrary code as root.
- The vulnerabilities stem from insufficient input validation in API requests.
- Users on certain releases are advised to upgrade to patched versions to avoid exploitation.
- No active attacks exploiting these vulnerabilities have been reported in the wild.