ID:11677 - Exploit for Improper authorization in Cisco Identity Services Engine (ISE) - CVE-2025-20125

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:11677 - Exploit for Improper authorization in Cisco Identity Services Engine (ISE) - CVE-2025-20125

ID:11677 - Exploit for Improper authorization in Cisco Identity Services Engine (ISE) - CVE-2025-20125

Published: June 20, 2025


Vulnerability identifier: #VU103658
Vulnerability risk: Medium
CVE-ID: CVE-2025-20125
CWE-ID: CWE-285
Exploitation vector: Remote access
Vulnerable software:
Cisco Identity Services Engine (ISE)

Link to public exploit:


Vulnerability description

The vulnerability allows a remote user to escalate privileges on the system.

The vulnerability exists due to incorrect authorization in certain API endpoint. A remote user with read-only administrative privileges can send a specially crated HTTP request and obtain sensitive information, change node configurations, and restart the node.


Remediation

Install updates from vendor's website.