SB2025062526 - Authorization bypass in Cisco Identity Services Engine
Published: June 25, 2025
Security Bulletin ID
SB2025062526
CSH Severity
Medium
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Remote access
Highest impact
Data manipulation
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 vulnerability.
1) Improper authorization (CVE-ID: CVE-2025-20264)
CWE-ID: CWE-285 - Improper Authorization
CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Green
The vulnerability allows a remote user to escalate privileges on the system.
The vulnerability exists due to insufficient authorization enforcement mechanisms for users created by SAML SSO integration with an external identity provider in the web-based management interface. A remote authenticated user can bypass the authorization mechanisms for specific administrative functions.
Remediation
Install update from vendor's website.