CVE-2025-20282 | Cisco Identity Services Engine Software 3.4.0 Internal API privileges management (cisco-sa-ise-unauth-rce-ZAd2GnJ6)

A vulnerability classified as very critical has been found in Cisco Identity Services Engine Software 3.4.0. This affects an unknown part of the component Internal API. The manipulation leads to improper privilege management.

This vulnerability is uniquely identified as CVE-2025-20282. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More