CVE-2025-20130 – “Cisco ISE File Upload Vulnerability”

June 4, 2025

CVE ID : CVE-2025-20130

Published : June 4, 2025, 5:15 p.m. | 2 hours, 21 minutes ago

Description : A vulnerability in the API of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, remote attacker with administrative privileges to upload files to an affected device.

This vulnerability is due to improper validation of the file copy function. An attacker could exploit this vulnerability by sending a crafted file upload request to a specific API endpoint. A successful exploit could allow the attacker to upload arbitrary files to an affected system.

Severity: 4.9 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-20129 – Cisco Customer Collaboration Platform (CCP) HTTP Request Manipulation Vulnerability

Next Article CVE-2025-5594 – FreeFloat FTP Server SET Command Handler Buffer Overflow Vulnerability

Highlights

CVE-2025-1245 – Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer Bypass Connection Restriction Vulnerability

May 16, 2025

CVE ID : CVE-2025-1245

Published : May 16, 2025, 6:15 a.m. | 2 hours, 44 minutes ago

Description : Bypass Connection Restriction vulnerability in Hitachi Infrastructure Analytics Advisor (Data Center Analytics component), Hitachi Ops Center Analyzer (Hitachi Ops Center Analyzer detail view component).This issue affects Hitachi Infrastructure Analytics Advisor:; Hitachi Ops Center Analyzer: from 10.0.0-00 before 11.0.4-00.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

AI is currently in its teenage years, battling raging hormones

4 ways your organization can adapt and thrive in the age of AI

Google’s new Search tool turns financial info into interactive charts – how to try it

This rugged Android phone has something I’ve never seen on competing models

Anthropic’s new AI models for classified info are already in use by US gov

Handling PostgreSQL Migrations in Node.js

Handling PostgreSQL Migrations in Node.js

How to Add Product Badges in Optimizely Configured Commerce Spire

Salesforce Health Check Assessment Unlocks ROI

Microsoft: Run PS script now if you deleted “inetpub” on Windows 11, Windows 10

Microsoft: Run PS script now if you deleted “inetpub” on Windows 11, Windows 10

Spf Permerror Troubleshooting Guide For Better Email Deliverability Today

Amap – Gather Info in Easy Way

CVE-2025-20130 – “Cisco ISE File Upload Vulnerability”

Fake Recruiter Emails Target CFOs Using Legit NetBird Tool Across 6 Global Regions

Qualcomm Fixes 3 Zero-Days Used in Targeted Android Attacks via Adreno GPU

Lenovo Legion Go S gaming handheld pre-orders are live for “SteamOS” models — I might break my loyalty to the Steam Deck

The power of spread and rest patterns in JavaScript

Appium 1.4.13 How to resolve error: Could not detect Mac OS X Version from sw_vers output: ‘10.12 ‘]?

EU AI Act: What Businesses Should Know to Stay Compliant

CVE-2025-1245 – Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer Bypass Connection Restriction Vulnerability

Amazon SageMaker Inference now supports G6e instances

Tesla Cybertruck

How to Discover Hidden Subdomains as an Ethical Hacker

CVE-2025-20130 – “Cisco ISE File Upload Vulnerability”

Related Posts