Cisco Releases Patches for Critical Vulnerabilities in ISE and ISE-PIC

Cisco has released patches for two critical vulnerabilities in Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC), identified as CVE-2025-20281 and CVE-2025-20282. These flaws allow remote, unauthenticated attackers to execute arbitrary code with root privileges. The vulnerabilities affect specific versions of Cisco ISE and ISE-PIC, and their exploitation could have severe impacts on the security of the affected systems.