CVE-2025-20281

{"id": "CVE-2025-20281", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "psirt@cisco.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2025-06-25T16:15:26.017", "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-unauth-rce-ZAd2GnJ6", "tags": ["Vendor Advisory"], "source": "psirt@cisco.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "psirt@cisco.com", "description": [{"lang": "en", "value": "CWE-74"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in a specific API of Cisco ISE and Cisco ISE-PIC could allow an unauthenticated, remote attacker to execute arbitrary code on the underlying operating system as root. The attacker does not require any valid credentials to exploit this vulnerability.\r\n\r\nThis vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by submitting a crafted API request. A successful exploit could allow the attacker to obtain root privileges on an affected device."}, {"lang": "es", "value": "Una vulnerabilidad en una API espec\u00edfica de Cisco ISE y Cisco ISE-PIC podr\u00eda permitir que un atacante remoto no autenticado ejecute c\u00f3digo arbitrario en el sistema operativo subyacente como root. El atacante no necesita credenciales v\u00e1lidas para explotar esta vulnerabilidad. Esta vulnerabilidad se debe a una validaci\u00f3n insuficiente de la informaci\u00f3n proporcionada por el usuario. Un atacante podr\u00eda explotar esta vulnerabilidad enviando una solicitud de API manipulada. Una explotaci\u00f3n exitosa podr\u00eda permitirle obtener privilegios de root en un dispositivo afectado."}], "lastModified": "2025-06-26T20:35:07.773", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.3.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F1B9C2C1-59A4-49A0-9B74-83CCB063E55D"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.3.0:patch1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DFD29A0B-0D75-4EAB-BCE0-79450EC75DD0"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.3.0:patch2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E6C94CC4-CC08-4DAF-A606-FDAFC92720A9"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.3.0:patch3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BB069EA3-7B8C-42B5-8035-2EE5ED3F56E4"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.3.0:patch4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FF8B81A6-BF44-4E5F-B167-39F61DDCA026"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.3.0:patch5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "56E0F0EC-3E66-4866-89F5-89B331F3F517"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.4.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D23905E0-E525-49B1-8E5F-4EB42D186768"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.4.0:patch1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "74509498-38EF-4345-9583-CEF5C26CA1D8"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.3.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3CA3315D-8A45-43F4-A0F0-094D325F285B"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.3.0:patch1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B3736136-9FD8-4B12-B119-EA15201224D9"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.3.0:patch2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "654ED77E-22D3-4E76-9E6D-B1581F5982F0"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.3.0:patch3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A0648EE9-F042-479F-9AAB-C6B5DBC46511"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.3.0:patch4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "83F3BA58-4F38-41C8-956F-38A2F44EECE4"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.3.0:patch5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6C30FA1D-91E2-48C5-B181-A88FDF668278"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.4.0:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CC0525FD-C4D7-4B48-BF35-1791391AB148"}, {"criteria": "cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.4.0:patch1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "68C96F6B-51EE-4D03-9598-CBFD16DA22EF"}], "operator": "OR"}]}], "sourceIdentifier": "psirt@cisco.com"}