Primary

Context

Cisco Identity Services Engine and ISE Passive Identity Connector Arbitrary File Upload Vulnerability

Vulnerability

Patched

A vulnerability exists in the API of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC), allowing authenticated, remote attackers with administrative privileges to upload files to affected devices. This issue arises from improper validation in the file copy function, enabling attackers to send crafted file upload requests to specific API endpoints. Exploitation of this vulnerability could result in the upload of arbitrary files to the system.

Impact

Successful exploitation allows for arbitrary file uploads to the affected system.

Remediation

Users can upgrade to Cisco ISE versions 3.1 P10, 3.2 P7, or 3.3 P3. For Cisco ISE-PIC, migrate to a fixed release. Consult the Cisco Security Advisories page for guidance on software upgrades.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

0.6

exploitability

4.4

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

0.6

exploitability

4.4

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Cisco Identity Services Engine and ISE Passive Identity Connector Arbitrary File Upload Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Cisco Identity Services Engine

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating