API Vulnerability in Cisco Identity Services Engine
CVE-2025-20125
Key Information:
- Vendor
- Cisco
- Vendor
- CVE Published:
- 5 February 2025
Badges
Summary
A vulnerability exists in the API of Cisco Identity Services Engine that allows authenticated remote attackers with valid read-only credentials to exploit system weaknesses. By sending a specially crafted HTTP request, attackers can potentially access sensitive information, alter system configurations, and restart the affected node. This issue arises from insufficient authorization and poor validation of user-provided data in the API. Exploitation can lead to significant security risks, particularly in single-node deployments, where new devices may fail to authenticate during restart periods.
Affected Version(s)
Cisco Identity Services Engine Software 3.0.0
Cisco Identity Services Engine Software 3.0.0 p1
Cisco Identity Services Engine Software 3.0.0 p2
Get notified when SecurityVulnerability.io launches alerting ๐
Well keep you posted ๐ง
News Articles
Multiple Vulnerabilities in Cisco Identity Services Engine (ISE)
Cisco has released security updates to address critical vulnerabilities (CVE-2025-20124 and CVE-2025-20125) affecting their Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC), regardless of device configuration.
2 days ago
Critical Cisco ISE Vulnerabilities Allow Arbitrary Command Execution Remotely
Cisco has disclosed two critical vulnerabilities in its Identity Services Engine (ISE) software that could allow authenticated, remote attackers to execute arbitrary commands, elevate privileges, and manipulate system configurations on affected devices. These vulnerabilities tracked as CVE-2025-2012...
6 days ago
References
CVSS V3.1
Timeline
- ๐ฐ
First article discovered by CybersecurityNews
- ๐พ
Exploit known to exist
Vulnerability published
Vulnerability Reserved