[Vulnerability Alert] Certificate Vulnerability in Cisco ISE Deployed on Cloud Platforms (CVE-2025-20286)

• Subject Description: [Vulnerability Alert] Certificate Vulnerability in Cisco ISE Deployed on Cloud Platforms (CVE-2025-20286)

• Content Description:
  • Forwarded from Taiwan Computer Emergency Response Team / Coordination Center TWCERTCC-200-202506-00000001
  • Cisco's Identity Services Engine (ISE) is an identity-based security management platform that collects information from networks and user devices, and enforces policies and regulatory decisions within network infrastructure. Recently, Cisco released a critical security vulnerability advisory (CVE-2025-20286, CVSS: 9.9). This vulnerability exists in AWS, Azure, and OCI cloud deployment platforms, allowing unauthenticated remote attackers to access sensitive data, perform limited administrative operations, modify system configurations, or disrupt services on affected systems.
• Affected Platforms:
  • AWS Platform: ISE versions 3.1, 3.2, 3.3, 3.4
  • Azure Platform: ISE versions 3.2, 3.3, 3.4
  • OCI: ISE versions 3.2, 3.3, 3.4
• Recommended Actions:
  • Please refer to the official documentation for updates: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-aws-static-cred-FPMjUcm7
• Reference:
  • https://www.twcert.org.tw/tw/cp-169-10164-a4b66-1.html

Computer and Communication Center
Network Systems Division