CVE-2025-20286

Name of the Vulnerable Software and Affected Versions Cisco Identity Services Engine (ISE) versions 3.1 through 3.4

Description A flaw in Amazon Web Services (AWS), Microsoft Azure, and Oracle Cloud Infrastructure (OCI) cloud deployments of Cisco Identity Services Engine (ISE) could allow an unauthenticated remote attacker to access sensitive data, execute limited administrative operations, modify system configurations, or disrupt services. This issue occurs because credentials are improperly generated during deployment on cloud platforms, causing different deployments to share the same static credentials if the software release and cloud platform are identical. An attacker could extract these credentials from one cloud-deployed instance and use them to access other instances via unsecured ports. This issue specifically affects environments where the Primary Administration node is deployed in the cloud; on-premises Primary Administration nodes are not affected.

Recommendations Update Cisco Identity Services Engine (ISE) versions 3.1 through 3.4 to a patched version.