CVE-2025-20264

CWE-2854 documents4 sources
Severity
6.4MEDIUM
EPSS
0.1%
top 71.14%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco Cisco Identity Services Engine SoftwareCisco Identity Services Engine
Timeline
PublishedJun 25
Latest updateJun 26

Description

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to bypass the authorization mechanisms for specific administrative functions. This vulnerability is due to insufficient authorization enforcement mechanisms for users created by SAML SSO integration with an external identity provider. An attacker could exploit this vulnerability by submitting a series of specific commands to an affected device. A successful

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:LExploitability: 3.1 | Impact: 2.7

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-2g95-q4q6-2mjq: A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to bypass2025-06-26
CVEList
Cisco Identity Services Engine Authorization Bypass Vulnerability2025-06-25

📋Vendor Advisories

1
Cisco
Cisco Identity Services Engine Authorization Bypass Vulnerability2025-06-25
CVE-2025-20264 (MEDIUM CVSS 6.4) | A vulnerability in the web-based ma | cvebase.io