Summary: Cisco has identified multiple vulnerabilities in its Identity Services Engine (ISE), including two critical remote code execution flaws, CVE-2025-20124 and CVE-2025-20125. Both flaws could be exploited by authenticated remote attackers to execute arbitrary commands and gain unauthorized access to sensitive information. Users are urged to upgrade to recommended fixed software releases as there are no available workarounds.
Affected: Cisco Identity Services Engine (ISE)
Keypoints :
- CVE-2025-20124: Insecure Java Deserialization issue allowing arbitrary command execution as the root user.
- CVE-2025-20125: Authorization bypass allowing read-only users to obtain sensitive information and modify configurations.
- Attackers need valid administrative credentials to exploit these vulnerabilities.
- No workarounds are available; users should upgrade to fixed software releases.
- Reported by researchers from Deloitte, with no known active exploits in the wild.