Cisco Confirms Active Exploits Targeting ISE Flaws Enabling Unauthenticated Root Access

Threat Level

50% The Hacker News 1 day ago Part of cluster #1302

Cisco on Monday updated its advisory of a set of recently disclosed security flaws in Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC) to acknowledge active exploitation. "In July 2025, the Cisco PSIRT [Product Security Incident Response Team], became aware of attempted exploitation of some of these vulnerabilities in the wild," the companysaidin an alert. The network equipment vendor did not disclose which vulnerabilities have been weaponized in real-world attacks, th...

Continue Reading on Original Site

Threat Intelligence

Ransomware 2

First Light

Malware 1

Leverage

Attack Types 1

Remote Code Execution

Vulnerabilities 1

Remote Code Execution

Business Intelligence

Companies 1

Cisco

Technical Indicators

CVEs 3

CVE-2025-20281 CVE-2025-20337 CVE-2025-20282

Information

Article ID: #4280
Published: 1 day ago
Source: The Hacker News

Cisco Confirms Active Exploits Targeting ISE Flaws Enabling Unauthenticated Root Access

Recommended Articles

FBI and CISA Warn of Interlock Ransomware Targeting Critical Infrastructure

US Nuclear Agency Breach Tied to SharePoint Zero-Days

Critical Vulnerability in JavaScript Library Exposes Millions of Apps to Code Execution Attacks

Interlock ransomware gang is ramping up activity, CISA warns

UK’s Ransomware Payment Ban: Bold Strategy or Dangerous Gamble?

Recommended Articles

FBI and CISA Warn of Interlock Ransomware Targeting Critical Infrastructure

US Nuclear Agency Breach Tied to SharePoint Zero-Days

Critical Vulnerability in JavaScript Library Exposes Millions of Apps to Code Execution Attacks

Interlock ransomware gang is ramping up activity, CISA warns

UK’s Ransomware Payment Ban: Bold Strategy or Dangerous Gamble?

Save to Folder

We use cookies

Cookie Settings

Essential Cookies

Analytics Cookies

Performance Cookies

Marketing Cookies