1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Cisco ISE maximum severity flaw lets hackers execute root code

    From TechnologyDaily@1337:1/100 to All on Thu Jul 17 18:15:08 2025
    Cisco ISE maximum severity flaw lets hackers execute root code

    Date:
    Thu, 17 Jul 2025 17:00:00 +0000

    Description:
    Versions 3.3 and 3.4 are vulnerable. Older - or newer - versions, are not.

    FULL STORY ======================================================================Cisco patched a maximum-severity flaw impacting Identity Services Engine and ISE Passive Identity Connector The flaw allowed threat actors to run arbitrary code on the underlying OS It was patched in versions 3.3 and 3.4

    A maximum-severity vulnerability was recently discovered, and patched, in Cisco Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC). This flaw allowed threat actors to execute arbitrary code, with elevated privileges, on the operating system of the devices running the
    tools.

    ISE is a network security policy management and access control platform, helping organizations centrally manage who and what can connect to their network. The ISE-PIC, on the other hand, is a lightweight service that collects identity information about users and devices without requiring them to authenticate via traditional methods.

    Both tools are typically used by enterprise IT and cybersecurity teams that manage large or complex network environments. The importance of patching

    Recently, security researcher Kentaro Kawane, from GMO Cybersecurity, discovered an insufficient validation of user-supplied input vulnerability that could be exploited by submitting a crafted API request. Valid
    credentials are not required to abuse the flaw.

    It is tracked as CVE-2025-20337, and was given a severity score of 10/10 (critical). It affects releases 3.3 and 3.4 of the tools, regardless of
    device configuration. However, releases 3.2 or older are not affected.

    Cisco addressed the flaws in these versions:

    - Cisco ISE or ISE-PIC Release 3.3 (Fixed in 3.3 Patch 7)
    - Cisco ISE or ISE-PIC Release 3.4 (Fixed in 3.4 Patch 2)

    The good news is that there is no evidence the vulnerability has been exploited in the wild by malicious actors. However, cybercriminals are known for targeting organizations only after a bug was made public, since many entities dont rush to apply the patches. By keeping hardware and software outdated, organizations are keeping their back doors wide open, and criminals are getting an easy way into the premises.

    Therefore, it would be good practice to apply the patches as soon as possible and prevent possible attacks.

    Via The Hacker News You might also like Cisco warns over worrying security flaws in ISE affecting AWS, Azure cloud deployments - here's what you need to know Take a look at our guide to the best authenticator app We've rounded up the best password managers



    ======================================================================
    Link to news story: https://www.techradar.com/pro/security/cisco-ise-maximum-severity-flaw-lets-ha ckers-execute-root-code


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)