US Edition
Cisco ISE Flaw Gave Root Access Before Fix Landed
GLOBAL, JUL 21 – Three critical vulnerabilities in Cisco Identity Services Engine have a maximum severity score of 10.0 and are being actively exploited, Cisco reported in July 2025.
- On July 21, 2025, Cisco warned of three critical ISE vulnerabilities allowing remote code execution as root, marking first active exploitation reports.
- Earlier this month, Cisco disclosed two critical flaws on June 25 and July 16 caused by insufficient input and file validation checks.
- These vulnerabilities hold a maximum severity rating and permit unauthenticated full-system access, affecting sectors like healthcare, finance and government.
- On Monday, Cisco confirmed active exploitation of CVE-2025-20281, while Dustin Childs reported it was exploited on July 17, 2025.
- With no workarounds available, organizations must upgrade to fixed software releases soon, as Cisco urges immediate action to mitigate these vulnerabilities.
11 Articles
11 Articles
Cisco network access security platform vulnerabilities under active exploitation
A pair of maximum-severity vulnerabilities affecting Cisco’s network access security platform are under active exploitation, the enterprise networking and IT vendor warned in a security advisory Monday. The software defects in Cisco Identity Services Engine and Cisco ISE Passive Identity Connector — CVE-2025-20281 and CVE-2025-20337 — were disclosed and addressed by Cisco on June 25, followed by the disclosure of a third critical vulnerability i…
No login? No problem: Cisco ISE flaw gave root access before fix arrived, say researchers
Shadowserver claims miscreants were already poking at a critical hole in early July, long before Switchzilla patched it Threat actors have actively exploited a newly patched vulnerability in Cisco's Identity Services Engine (ISE) software since early July, weeks before the networking giant got around to issuing a fix. . . .
Three vulnerabilities with a severity of 10/10 – called CVE-2025-20281, CVE-2025-20337 and CVE-2025-20282 – allow the execution of arbitrary unauthenticated remote code on Cisco's Identity Services Engine platform. Following a security notice published on June 25, the US network equipment giant now claims to be "aware of [...] The post Three faults of maximum gravity impact Cisco's Identity Services Engine platform appeared first on ChannelNews.
Cisco Network Access Security Platform Vulnerabilities Under Active Exploitation - Cybernoz - Cybersecurity News
A pair of maximum-severity vulnerabilities affecting Cisco’s network access security platform are under active exploitation, the enterprise networking and IT vendor warned in a security advisory Monday. The software defects in Cisco Identity Services Engine and Cisco ISE Passive Identity Connector — CVE-2025-20281 and CVE-2025-20337 — were disclosed and addressed by Cisco on June 25, followed by the disclosure of a third critical vulnerability i…
Coverage Details
Bias Distribution
- 100% of the sources are Center
Factuality
To view factuality data please Upgrade to Premium
