Vulners
Lucene search
Cisco Identity Services Engine (cisco-sa-ise-restart-ss-uf986G2Q)
| Reporter | Title | Published | Views | Family All 13 |
|---|---|---|---|---|
 | CVE-2025-20152 | 21 May 202516:41 | – | circl |
 | Cisco Identity Services Engine RADIUS Denial of Service Vulnerability | 21 May 202516:00 | – | cisco |
 | Cisco Identity Services Engine 缓冲区错误漏洞 | 21 May 202500:00 | – | cnnvd |
 | CVE-2025-20152 | 21 May 202516:19 | – | cve |
 | CVE-2025-20152 ISE restart | 21 May 202516:19 | – | cvelist |
 | EUVD-2025-16022 | 3 Oct 202520:07 | – | euvd |
 | Vulnerability fixed in Cisco Identity Services Engine | 22 May 202508:14 | – | ncsc |
 | CVE-2025-20152 | 21 May 202517:15 | – | nvd |
 | CVE-2025-20152 | 21 May 202517:15 | – | osv |
 | PT-2025-22379 · Cisco · Cisco Identity Services Engine | 4 Apr 202500:00 | – | ptsecurity |
10
#TRUSTED 7f72f506ce9bd81d0363787f39791d92a0367671aa88b0d2d7e0a954c7088e70d544ac351d4260c1b387cb56173087adbace33ed97cfc2f6bafc6790ee8e49cebb3d9077a85fa385753d58719966c7b48c5fb32c1f468f29806b237b035e3bff540befb5370280776c5643c5f89443a96b820a26980e83c572e527e6b0c04968fd3a340ba1802b10a71625a8bf35e22cd6ebaa9d67a8a3ffa8be5dd66303130e9e34e2b25d04bb4c080001cbfbffc5a83c25a36a41c37f73fa056b84ff09c7ceb06eb7d9be21c7f97fc3e0fd0fac2bbd3d540d9a8ba692c9dda19d413f5f962802ce755123ee8f619760d9e1cd6b0f2c81c1a7b49497e75c340cb1415cf9694c3dd81304bad4bf94cf28484f4173adf010a9058d73ac4be6b85d3ffe2991531c939d064e20a94db3e5b5d8deba944f14cd808593323499e05da83e57c3e68b7f13e1d46c54b12a2c0d2aee99e6e6fd02dc96c459ec5c780bb4a82e1f226902d14bcf375cc464b3c6ebca69b80a84f52742250e177bfed9143c3d19f9a7a9a846ead56160bb524efbf0d084088a6bf42d97a6744ddb90427f3c399a0317327d405c803c16e1dd1de6bcc73f15deaa7b2c220056ff857ba237cb9b67d0b05bc09ad69fcac2beeb361c6e2bf9f1f95f458b2cf6965efcb1802cde96198d2f0e28dded8e82c7eaae8922d410817167447c7fb47a77434fbbe480b83045911ab00393
#TRUST-RSA-SHA256 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
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(237024);
script_version("1.4");
script_set_attribute(attribute:"plugin_modification_date", value:"2025/08/27");
script_cve_id("CVE-2025-20152");
script_xref(name:"CISCO-BUG-ID", value:"CSCwm04960");
script_xref(name:"CISCO-SA", value:"cisco-sa-ise-restart-ss-uf986G2Q");
script_xref(name:"IAVA", value:"2025-A-0370-S");
script_name(english:"Cisco Identity Services Engine (cisco-sa-ise-restart-ss-uf986G2Q)");
script_set_attribute(attribute:"synopsis", value:
"The remote device is missing a vendor-supplied security patch.");
script_set_attribute(attribute:"description", value:
"According to its self-reported version, Cisco ISE is affected by a vulnerability.
- A vulnerability in the RADIUS message processing feature of Cisco Identity Services Engine (ISE) could
allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected
device. This vulnerability is due to improper handling of certain RADIUS requests. An attacker could
exploit this vulnerability by sending a specific authentication request to a network access device (NAD)
that uses Cisco ISE for authentication, authorization, and accounting (AAA). A successful exploit could
allow the attacker to cause Cisco ISE to reload. (CVE-2025-20152)
Please see the included Cisco BIDs and Cisco Security Advisory for more information.");
# https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-restart-ss-uf986G2Q
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?39e4ee53");
script_set_attribute(attribute:"see_also", value:"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwm04960");
script_set_attribute(attribute:"solution", value:
"Upgrade to the relevant fixed version referenced in Cisco bug ID CSCwm04960");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2025-20152");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_cwe_id(125);
script_set_attribute(attribute:"vuln_publication_date", value:"2025/05/21");
script_set_attribute(attribute:"patch_publication_date", value:"2025/05/21");
script_set_attribute(attribute:"plugin_publication_date", value:"2025/05/21");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/h:cisco:identity_services_engine");
script_set_attribute(attribute:"cpe", value:"cpe:/a:cisco:identity_services_engine");
script_set_attribute(attribute:"cpe", value:"cpe:/a:cisco:identity_services_engine_software");
script_set_attribute(attribute:"generated_plugin", value:"former");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"CISCO");
script_copyright(english:"This script is Copyright (C) 2025 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("cisco_ise_detect.nbin");
script_require_keys("Host/Cisco/ISE/version");
exit(0);
}
include('ccf.inc');
include('cisco_ise_func.inc');
var product_info = cisco::get_product_info(name:'Cisco Identity Services Engine Software');
product_info = strip_fourth_segment(product_info:product_info);
var vuln_ranges = [
{'min_ver': '3.4', 'fix_ver': '3.4', 'required_patch': '1'}
];
var required_patch = get_required_patch(vuln_ranges:vuln_ranges, version:product_info['version']);
var reporting = make_array(
'port' , 0,
'severity' , SECURITY_HOLE,
'version' , product_info['version'],
'bug_id' , 'CSCwm04960',
'disable_caveat', TRUE,
'fix' , 'See vendor advisory'
);
cisco::check_and_report(
product_info:product_info,
reporting:reporting,
vuln_ranges:vuln_ranges,
required_patch:required_patch
);
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
27 Aug 2025 00:00Current
8.6High risk
Vulners AI Score8.6
CVSS 3.18.6
EPSS0.00234
SSVC