Cisco has issued an urgent security advisory warning that a set of critical remote code execution (RCE) vulnerabilities affecting its Identity Services Engine (ISE) and Passive Identity Connector (ISE-PIC) products are being actively exploited in the wild.
The flaws, tracked as CVE-2025-20281, CVE-2025-20282, and CVE-2025-20337, carry the highest possible severity rating, with a CVSS base score of 10.0, and allow unauthenticated attackers to gain root-level access to vulnerable systems.
https://gbhackers.com/cisco-alerts-on-i ... erability/