Language:
http://www.nessus.org/u?c8410918
Severity: Critical
ID: 240470
File Name: cisco-sa-ise-unauth-rce-ZAd2GnJ6_CVE-2025-20281.nasl
Version: 1.7
Type: local
Family: CISCO
Published: 6/25/2025
Updated: 8/5/2025
Supported Sensors: Nessus
Risk Factor: Critical
Score: 10.0
Risk Factor: Critical
Base Score: 10
Temporal Score: 8.3
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2025-20281
Risk Factor: Critical
Base Score: 10
Temporal Score: 9.3
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C
CPE: cpe:/h:cisco:identity_services_engine, cpe:/a:cisco:identity_services_engine, cpe:/a:cisco:identity_services_engine_software
Required KB Items: Host/Cisco/ISE/version
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 6/25/2025
Vulnerability Publication Date: 6/25/2025
CISA Known Exploited Vulnerability Due Dates: 8/18/2025
CVE: CVE-2025-20281
CWE: 74
CISCO-SA: cisco-sa-ise-unauth-rce-ZAd2GnJ6
IAVA: 2025-A-0454, 2025-A-0533
CISCO-BUG-ID: CSCwo99449, CSCwp02821