Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact
9.9
CVSSv3

CVE-2025-20124

CVSSv4: NA | CVSSv3: 9.9 | CVSSv2: NA | VMScore: 1000 | EPSS: 0.0013 | KEV: Not Included
Published: 05/02/2025 Updated: 05/02/2025

Vulnerability Summary

Command Injection Vulnerability in Cisco ISE API Enables Root-Level Remote Code Execution

A vulnerability exists in the API of Cisco ISE that could allow an authenticated, remote attacker to execute arbitrary commands as the root user on an affected device. The vulnerability stems from insecure deserialization of user-supplied Java byte streams by the affected software. An attacker could potentially execute this vulnerability by sending a crafted serialized Java object to an affected API. A successful attack could enable the attacker to execute arbitrary commands on the device and elevate privileges. It is important to note that to successfully exploit this vulnerability, the attacker must possess valid read-only administrative credentials. Additionally, in a single-node deployment, new devices will not be able to authenticate during the reload time.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

cisco cisco identity services engine software

cisco cisco ise passive identity connector

Recent Articles

Critical Cisco ISE bug can let attackers run commands as root
BleepingComputer • Sergiu Gatlan • 06 Feb 2025

Critical Cisco ISE bug can let attackers run commands as root By Sergiu Gatlan February 6, 2025 11:40 AM 0 Cisco has released patches to fix two critical vulnerabilities in its Identity Services Engine (ISE) security policy management platform. Enterprise administrators use Cisco ISE as an identity and access management (IAM) solution that combines authentication, authorization, and accounting into a single appliance. The two security flaws (CVE-2025-20124 and CVE-2025-20125) can be exploited by...

Read more...

References

CWE-502https://nvd.nist.govhttps://www.bleepingcomputer.com/news/security/critical-cisco-ise-bug-can-let-attackers-run-commands-as-root/https://www.first.org/epsshttps://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-multivuls-FTW9AOXF
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
viasatdoscross-site request forgeryteconcethemeCVE-2025-1565CVE-2025-28076firmwarez2dweb serverCVE-2025-2070CVE-2025-3645CVE-2025-31324CVE-2024-6235
Home
/
Search Results
/
CVE-2025-20124
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook