Cisco Ise Passive Identity Connector vulnerabilities

4 known vulnerabilities affecting cisco/cisco_ise_passive_identity_connector.

Total CVEs
4
CISA KEV
1
actively exploited
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2025-20331MEDIUMCVSS 5.4v3.3.0v3.4.02025-08-06
CVE-2025-20331 [MEDIUM] CWE-80 CVE-2025-20331: A vulnerability in the web-based management interface of Cisco ISE and Cisco ISE-PIC could allow an A vulnerability in the web-based management interface of Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to conduct a stored XSS attack against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affected system. An attacker could ex
cvelistv5nvd
CVE-2025-20337CRITICALCVSS 10.0KEVv3.2.0v3.1.0+2 more2025-07-16
CVE-2025-20337 [CRITICAL] CWE-74 CVE-2025-20337: A vulnerability in a specific API of Cisco ISE and Cisco ISE-PIC could allow an unauthenticated, rem A vulnerability in a specific API of Cisco ISE and Cisco ISE-PIC could allow an unauthenticated, remote attacker to execute arbitrary code on the underlying operating system as root. The attacker does not require any valid credentials to exploit this vulnerability. This vulnerability is due to insufficient validation of user-supplied input. An att
cvelistv5nvd
CVE-2025-20124HIGHCVSS 7.2PoCv3.0.0v3.2.0+2 more2025-02-05
CVE-2025-20124 [CRITICAL] CWE-502 CVE-2025-20124: A vulnerability in an API of Cisco ISE could allow an authenticated, remote attacker to execute arbi A vulnerability in an API of Cisco ISE could allow an authenticated, remote attacker to execute arbitrary commands as the root user on an affected device. This vulnerability is due to insecure deserialization of user-supplied Java byte streams by the affected software. An attacker could exploit this vulnerability by sending a crafted serialized J
cvelistv5nvd
CVE-2025-20125HIGHCVSS 7.2PoCv3.0.0v3.2.0+2 more2025-02-05
CVE-2025-20125 [CRITICAL] CWE-285 CVE-2025-20125: A vulnerability in an API of Cisco ISE could allow an authenticated, remote attacker with valid read A vulnerability in an API of Cisco ISE could allow an authenticated, remote attacker with valid read-only credentials to obtain sensitive information, change node configurations, and restart the node. This vulnerability is due to a lack of authorization in a specific API and improper validation of user-supplied data. An attacker could exploit thi
cvelistv5nvd