PUBLISHED DATE: May 21, 2025CVE-2025-20267:
Cross-Site Scripting Vulnerability

Description

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affected system. An attacker could exploit this vulnerability by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. To exploit this vulnerability, the attacker must have valid administrative credentials.

Questions to Ask Vendors

1. Can you confirm whether your systems are affected by CVE-2025-20267, and if so, what steps are you currently taking to mitigate this vulnerability?
2. What is your estimated timeline for fully resolving CVE-2025-20267 in your products or services, and how will you communicate updates on this issue to us as your customer?

Recommended Actions

• Check out the advisory links provided below.

References

• https://capec.mitre.org/data/definitions/18.html
• https://capec.mitre.org/data/definitions/193.html
• https://capec.mitre.org/data/definitions/32.html
• https://capec.mitre.org/data/definitions/86.html
• https://nvd.nist.gov/vuln/detail/CVE-2025-20267