CVE-2025-20284 | THREATINT

Description

A vulnerability in a specific API of Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to execute arbitrary code on the underlying operating system as root. This vulnerability is due to insufficient validation of user-supplied input. An attacker with valid credentials could exploit this vulnerability by submitting a crafted API request. A successful exploit could allow the attacker to execute commands as the root user. To exploit this vulnerability, the attacker must have valid high-privileged credentials.

PUBLISHED Reserved 2024-10-10 | Published 2025-07-16 | Updated 2026-02-26 | Assigner cisco

MEDIUM: 6.5CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

Problem types

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

Product status

Default status

unknown

3.3.0

affected

3.3 Patch 2

affected

3.3 Patch 1

affected

3.3 Patch 3

affected

3.4.0

affected

3.3 Patch 4

affected

3.4 Patch 1

affected

3.3 Patch 5

affected

3.3 Patch 6

affected

References

sec.cloudapps.cisco.com/...isory/cisco-sa-ise-multi-3VpsXOxO (cisco-sa-ise-multi-3VpsXOxO)

cve.org (CVE-2025-20284)

nvd.nist.gov (CVE-2025-20284)

Download JSON