**Name of the Vulnerable Software and Affected Versions:**

Cisco ISE and Cisco ISE-PIC versions 3.3 through 3.4

Cisco ISE and Cisco ISE-PIC (affected versions not specified)

**Description:**

A vulnerability exists in a specific API of Cisco ISE and Cisco ISE-PIC due to insufficient validation of user-supplied input. This allows an unauthenticated, remote attacker to execute arbitrary code on the underlying operating system as root. The attacker does not require any valid credentials to exploit this issue. This vulnerability is actively exploited.

**Recommendations:**

Cisco ISE versions prior to 3.3 Patch 7 are vulnerable.

Cisco ISE-PIC versions prior to 3.4 Patch 2 are vulnerable.