CVE-2025-20281 | Cisco Identity Services Engine Software 3.3.0/3.4.0 API injection (cisco-sa-ise-unauth-rce-ZAd2GnJ6)

A vulnerability was found in Cisco Identity Services Engine Software 3.3.0/3.4.0. It has been classified as critical. Affected is an unknown function of the component API. The manipulation leads to injection.

This vulnerability is traded as CVE-2025-20281. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More