CVE-2025-20337 - Geek Feed

Cisco: Maximum-severity ISE RCE flaws now exploited in attacks

July 24, 2025July 24, 2025 geekfeed0Tagged Actively Exploited, cisco, Cisco ISE, CVE-2025-20281, CVE-2025-20282, CVE-2025-20337, rce, Remote Code Execution, Security Advisory, vulnerability

Cisco is warning that three recently patched critical remote code execution vulnerabilities in Cisco Identity Services Engine (ISE) are now being actively exploited in attacks. Although the vendor did not specify how they were being exploited and whether they were successful, applying the security updates as soon as possible is now critical. “In July 2025, the […]

2 mins read

Max severity Cisco ISE bug allows pre-auth command execution, patch now

July 18, 2025July 18, 2025 geekfeed0Tagged cisco, CVE-2025-20337, Identity Services Engine, rce, Remote Code Execution, vulnerability

A critical vulnerability (CVE-2025-20337) in Cisco’s Identity Services Engine (ISE) could be exploited to let an unauthenticated attacker store malicious files, execute arbitrary code, or gain root privileges on vulnerable devices. The security issue received the maximum severity rating, 10 out of 10, and is caused by insufficient user-supplied input validation checks. It was discovered by Kentaro Kawane, a researcher […]

3 mins read