Exploit for Deserialization of Untrusted Data in Cisco Identity Services Engine

June 16, 2025 invoker category_exploit

Exploit Details

Basic Information

Exploit Title Exploit for Deserialization of Untrusted Data in Cisco Identity Services Engine
Exploit ID 82E8F9DF-AF6E-57BA-8419-D00A4EDA93CB
Type githubexploit
Published 2025-06-16T07:44:34
Modified 2025-06-16T08:07:48

CVSS Information

CVSS Score 9.9
Severity CRITICAL
Vector CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:H

CVE Information

  • CVE-2025-20125
  • CVE-2025-20124

Exploit Description

🗒️ How to use cve‑20124 (RCE): python3 Exploit.py –url https://ise.example.com –Session your_ISE_Session_Token –DESER-CMD "Touch /TMP /PWWNED" …

Exploit Code

View Full Exploit Details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.