Cisco ISE Web UI XSS via Insufficient Input Validation
CVE-2025-20205 Published on February 5, 2025
Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability
Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the interface.
These vulnerabilities are due to insufficient validation of user-supplied input by the web-based management interface of an affected system. An attacker could exploit these vulnerabilities by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. To exploit these vulnerabilities, the attacker must have valid administrative credentials.
Vulnerability Analysis
CVE-2025-20205 can be exploited with network access, requires user interaction and user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have a small impact on confidentiality and integrity, and no impact on availability.
Weakness Type
What is a XSS Vulnerability?
The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
CVE-2025-20205 has been classified to as a XSS vulnerability or weakness.
Products Associated with CVE-2025-20205
stack.watch emails you whenever new vulnerabilities are published in Cisco Identity Services Engine or Cisco Identity Services Engine Software. Just hit a watch button to start following.
Affected Versions
Cisco Identity Services Engine Software:- Version 3.0.0 is affected.
- Version 3.0.0 p1 is affected.
- Version 3.0.0 p2 is affected.
- Version 3.0.0 p3 is affected.
- Version 3.1.0 is affected.
- Version 3.0.0 p4 is affected.
- Version 3.1.0 p1 is affected.
- Version 3.0.0 p5 is affected.
- Version 3.1.0 p3 is affected.
- Version 3.1.0 p2 is affected.
- Version 3.0.0 p6 is affected.
- Version 3.2.0 is affected.
- Version 3.1.0 p4 is affected.
- Version 3.1.0 p5 is affected.
- Version 3.2.0 p1 is affected.
- Version 3.0.0 p7 is affected.
- Version 3.1.0 p6 is affected.
- Version 3.2.0 p2 is affected.
- Version 3.1.0 p7 is affected.
- Version 3.3.0 is affected.
- Version 3.2.0 p3 is affected.
- Version 3.0.0 p8 is affected.
- Version 3.2.0 p4 is affected.
- Version 3.1.0 p8 is affected.
- Version 3.2.0 p5 is affected.
- Version 3.2.0 p6 is affected.
- Version 3.1.0 p9 is affected.
- Version 3.3 Patch 2 is affected.
- Version 3.3 Patch 1 is affected.
- Version 3.3 Patch 3 is affected.
- Version 3.4.0 is affected.
- Version 3.2.0 p7 is affected.
- Version 3.3 Patch 4 is affected.
- Version 3.4 Patch 1 is affected.
- Version 3.1.0 p10 is affected.
- Version 3.3 Patch 5 is affected.
- Version 3.3 Patch 6 is affected.
- Version 3.4 Patch 2 is affected.
- Version 3.3 Patch 7 is affected.
- Version 3.4 Patch 3 is affected.
- Version 3.5.0 is affected.
- Version 3.4 Patch 4 is affected.
- Version 3.3 Patch 8 is affected.
- Version 3.2 Patch 8 is affected.
- Version 3.5 Patch 1 is affected.
- Version 3.3 Patch 9 is affected.
- Version 3.2 Patch 9 is affected.
- Version 3.4 Patch 5 is affected.
- Version 3.5 Patch 3 is affected.
- Version 3.5 Patch 2 is affected.
- Version 3.3 Patch 10 is affected.
- Version 3.3 Patch 11 is affected.
- Version 3.4 Patch 6 is affected.
- Version 3.2 Patch 10 is affected.
- Version 3.1.0 p72 is affected.
- Version 3.1.0 p11 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.