CVE-2025-20337
Published Jul 16, 2025
Last updated a month ago
AI description
CVE-2025-20337 is a vulnerability in a specific API of Cisco ISE (Identity Services Engine) and Cisco ISE-PIC (ISE Passive Identity Connector). It could allow an unauthenticated, remote attacker to execute arbitrary code on the underlying operating system as root. The attacker doesn't need any valid credentials to exploit this vulnerability. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit it by submitting a crafted API request. Successful exploitation could allow the attacker to obtain root privileges on an affected device. This affects Cisco ISE and ISE-PIC releases 3.3 and 3.4, regardless of device configuration.
- Description
- A vulnerability in a specific API of Cisco ISE and Cisco ISE-PIC could allow an unauthenticated, remote attacker to execute arbitrary code on the underlying operating system as root. The attacker does not require any valid credentials to exploit this vulnerability. This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by submitting a crafted API request. A successful exploit could allow the attacker to obtain root privileges on an affected device.
- Source
- psirt@cisco.com
- NVD status
- Analyzed
- Products
- identity_services_engine, identity_services_engine_passive_identity_connector
CVSS 3.1
- Type
- Secondary
- Base score
- 10
- Impact score
- 6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
- Severity
- CRITICAL
Data from CISA
- Vulnerability name
- Cisco Identity Services Engine Injection Vulnerability
- Exploit added on
- Jul 28, 2025
- Exploit action due
- Aug 18, 2025
- Required action
- Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- psirt@cisco.com
- CWE-74
- Hype score
- Not currently trending
Actively exploited CVE : CVE-2025-20337
@transilienceai
25 Nov 2025
21 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
🚩 Amazon Uncovers Attacks Exploiting Cisco ISE and Citrix NetScaler as Zero-Day Flaws https://t.co/6iKbcRSPWl Amazon's MadPot honeypot network detected advanced threat actors exploiting two zero-days: CVE-2025-5777 (Citrix Bleed 2) and CVE-2025-20337 (Cisco ISE RCE) to deplo
@Huntio
22 Nov 2025
1129 Impressions
4 Retweets
9 Likes
3 Bookmarks
1 Reply
0 Quotes
Actively exploited CVE : CVE-2025-20337
@transilienceai
17 Nov 2025
24 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Zero-Day Threats Strike Cisco and Amazon Systems! Critical zero-day vulnerabilities in Cisco ISE (CVE-2025-20337) and Citrix NetScaler (CVE-2025-5777) were exploited in the wild before patches were released, enabling attackers to install stealth web shells and gain administrator
@ChbibAnas
16 Nov 2025
37 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-20337
@transilienceai
15 Nov 2025
16 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Explotación activa en este momento en Firewalls: - Cisco ISE - CVE-2025-20337 🔗https://t.co/jGXrqrUF3I - FortiWeb WAF - NO CVE 🔗https://t.co/r2DbL8NNUQ - Vuln en PAN-OS permite reiniciar el Firewall - CVE-2025-4619 🔗https://t.co/4tQdbHDcZa Feliz finde a los admin!
@SeguInfo
14 Nov 2025
1544 Impressions
8 Retweets
18 Likes
7 Bookmarks
0 Replies
1 Quote
Amazon uncovered an advanced APT simultaneously exploiting Cisco ISE RCE (CVE-2025-20337) and Citrix Bleed Two (CVE-2025-5777) as zero-days. The attacker deployed a custom in-memory web shell on Cisco ISE. #CiscoZeroDay #CitrixHack #Cyberespionage https://t.co/Ra8EmmvliU
@the_yellow_fall
14 Nov 2025
5 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
An advanced threat actor exploited the critical vulnerabilities “Citrix Bleed 2" (CVE-2025-5777) in NetScaler ADC and Gateway, and CVE-2025-20337 affecting Cisco Identity Service Engine (ISE) as zero-days to deploy custom malware. https://t.co/8Tc9omcR04
@blackwired32799
14 Nov 2025
45 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Active Exploitation of Cisco ISE RCE Vulnerability (CVE-2025-20337) 🚨 A critical unauthenticated RCE flaw in Cisco ISE and ISE-PIC is now being exploited. Amazon researchers observed an APT targeting a previously undocumented ISE endpoint. 🔴 Affects ISE/ISE-PIC vers
@censysio
13 Nov 2025
14576 Impressions
28 Retweets
81 Likes
26 Bookmarks
1 Reply
3 Quotes
https://t.co/820U4pK5ip APT Group Exploits Zero-Days in Cisco and Citrix Systems Amazon’s MadPot honeypot service detected the exploitation attempts, leading to the identification of CVE-2025-5777 and CVE-2025-20337.
@SecOpsWatch
13 Nov 2025
5 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Amazon sees exploitation of Cisco ISE (CVE-2025-20337) and CitrixBleed 2 (CVE-2025-5777) as zero-days - patch now and monitor access. https://t.co/2yAwI7TEDc #infosec #Cisco #Citrix #ZeroDay #CVE2025-20337
@_UncleHacker_
13 Nov 2025
14 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️ ZERO-DAY ALERT: Amazon uncovers an advanced actor exploiting new zero-days in Cisco ISE (CVE-2025-20337) & Citrix NetScaler (CVE-2025-5777). Campaign targets critical identity & network infrastructure. Patches pending. #CyberSecurity #ZeroDay #Th... 🔗 https://t
@NetSecIO
12 Nov 2025
16 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Amazon's threat intelligence team identified exploitation attempts using previously undisclosed vulnerabilities in Citrix Bleed Two and Cisco ISE (CVE-2025-5777 and CVE-2025-20337). The unknown threat actor deployed a sophisticated custom web shell backdoor with advanced evasion
@Leila97726926
12 Nov 2025
36 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Cisco alerta: falha RCE crítica (CVE-2025-20337) afeta ISE v3.3/3.4. API vulnerável sem sanitização permite acesso root sem credenciais, com IA agilizando a exploração. Patch obrigatório! #Cisco #Segurança #CVE2025 https://t.co/hZrGS9GTRb
@andre_lug
10 Nov 2025
17 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
#VulnerabilityReport #AuthenticationBypass Critical Cisco ISE Flaw CVE-2025-20337 (CVSS 10.0) Allows Unauthenticated Root RCE – Patch Immediately https://t.co/M1DpK9HU9P
@Komodosec
23 Aug 2025
28 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[1day1line] CVE-2025-20281/CVE-2025-20337: Remote code execution vulnerability in Cisco Identity Services Engine https://t.co/Ms7eOmhzEE Today's vulnerabilities are RCE vulnerabilities that occurred in Cisco's NAC solution, ISE (Identity Service Engine). They occur when a
@hackyboiz
23 Aug 2025
1023 Impressions
5 Retweets
14 Likes
7 Bookmarks
0 Replies
0 Quotes
ADVISORY: Critical Vulnerability on Cisco ISE / ISE-PIC (CVE-2025-20337) Cisco has disclosed a maximum-severity, critical vulnerability in its Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC) products. Tracked as CVE-2025-20337, this vulnerability http
@NITDANigeria
19 Aug 2025
1388 Impressions
12 Retweets
25 Likes
1 Bookmark
4 Replies
0 Quotes
On July 16, 2025, Cisco updated its advisory to include a third maximum-severity vulnerability affecting Cisco Identity Services Engine (ISE) and ISE-Passive Identity Connector (ISE-PIC), tracked as CVE-2025-20337. https://t.co/DrLpZM6KXU
@ChannelSkell
29 Jul 2025
23 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CISA Alert: Cisco ISE Vulnerabilities Exploited CVE-2025-20281 & CVE-2025-20337 allow remote root access — now in CISA’s KEV catalog. 🔗https://t.co/PsKMXGHOpn #CiscoISE #CVE202520281 #CyberSecurity #CISA #RCE #MSP #ZeroTrust #KEV #T https://t.co/mg6hjpk85b
@VaultEdgeIT
29 Jul 2025
79 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
🔐 Critical Security Alert: CVE-2025-20337 – Cisco ISE Vulnerability 🚨 A critical remote code execution (RCE) vulnerability has been identified in Cisco Identity Services Engine (ISE)and ISE Passive Identity Connector (ISE-PIC). This flaw allows unauthenticated attacks.
@infoavana
29 Jul 2025
65 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🔍 Vulnerabilidades en API de Cisco ISE y Cisco ISE-PIC (CVE-2025-20281 / CVE-2025-20337), podría permitir que un atacante remoto no autenticado ejecute código arbitrario en el sistema operativo subyacente como root. CVSS 10.0CRITICAL Vendor - Cisco https://t.co/Em8SOQwRrH h
@ciberseguridadx
29 Jul 2025
13 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Cisco ISEの脆弱性CVE-2025-20281とCVE-2025-20337の概要と対策 https://t.co/lbpfC7QUfe #Security #セキュリティ #ニュース
@SecureShield_
29 Jul 2025
3 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🔐 CISA alerte : failles Cisco ISE (CVE-2025-20281, CVE-2025-20337) exploitées activement. Accès root non authentifié possible. Patch d’urgence requis avant le 18/08 ! #CyberSecurite #Cisco https://t.co/pyDcIIao5H
@inidreamtheater
28 Jul 2025
68 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Latest Known Exploited Vulnerabilities (#KEV) : #CVE-2025-20337 #Cisco Identity Services Engine Injection Vulnerability https://t.co/0w2MywPpFx
@ScyScan
28 Jul 2025
22 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Update: CISA just added CVE-2025-20281 and CVE-2025-20337 to its Known Exploited Vulnerabilities list. These Cisco ISE flaws allow remote, unauthenticated attackers to gain root access — and they're already being exploited. Feds must patch by Aug 18. Everyone else: don
@TheHackersNews
28 Jul 2025
9735 Impressions
33 Retweets
58 Likes
8 Bookmarks
0 Replies
1 Quote
🛡️ We added PaperCut and Cisco vulnerabilities CVE-2023-2533, CVE-2025-20281, & CVE-2025-20337 to our Known Exploited Vulnerabilities Catalog. Visit https://t.co/myxOwap1Tf & apply mitigations to protect your org from cyberattacks. #Cybersecurity #InfoSec https://t.c
@CISACyber
28 Jul 2025
400 Impressions
1 Retweet
5 Likes
2 Bookmarks
1 Reply
0 Quotes
Cisco CVE-2025-20337 & ISE-PIC Vulnerabilities Uncovered #CISO https://t.co/erUtL24027
@compuchris
24 Jul 2025
19 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Cisco Maximum-severity ISE RCE flaws now exploited in attacks (CVE-2025-20281 and CVE-2025-20282) and July 16, 2025 (CVE-2025-20337). https://t.co/1Jv8OoJGMB
@freedomhack101
24 Jul 2025
56 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨 Alerta de cibersegurança - CISCO ISE! Hackers estão explorando três falhas críticas no Cisco ISE e ISE-PIC, permitindo execução remota de código como root, sem autenticação. 😱 🔍 Vulnerabilidades: • CVE-2025-20281 • CVE-2025-20282 • CVE-2025-20337 💣
@brainworkblog
24 Jul 2025
44 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Cisco confirms active exploitation of ISE and ISE-PIC flaws Cisco has confirmed active exploitation of critical vulnerabilities in Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC), tracked as CVE-2025-20281, CVE-2025-20282, and CVE-2025-20337, first ht
@dCypherIO
23 Jul 2025
46 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Vulnerabilidad crítica en Cisco ISE Se ha identificado una vulnerabilidad crítica (CVE-2025-20337) en Cisco Identity Services Engine (ISE). Más Información: https://t.co/VP50GPf4sV #Vulnerability #Cisco https://t.co/tP6VC07lxo
@CSIRT_Telconet
23 Jul 2025
5 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
After analyzing 33% of vulnerabilities from past week, CVE-2025-20337 has 10 articles published from different internet sources. More information here: https://t.co/SyyDujjO8C #vulnerability #security #cve
@stooee_
22 Jul 2025
9 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Security Alert: Cisco confirms active exploits targeting ISE flaws (CVE-2025-20281, CVE-2025-20337, CVE-2025-20282) enabling unauthenticated root access, reported July 22, 2025. Threat: Attackers can execute arbitrary code via crafted API requests or file uploads, risking https:
@tony3266
22 Jul 2025
122 Impressions
0 Retweets
3 Likes
0 Bookmarks
0 Replies
0 Quotes
Cisco Warns of Critical ISE Flaw Allowing Unauthenticated Attackers to Execute Root Code. Tracked as CVE-2025-20337, the shortcoming carries a CVSS score of 10.0 and is similar to CVE-2025-20281 which was patched late last month. https://t.co/NxjiTKGa8e https://t.co/b022XffXRI
@riskigy
19 Jul 2025
28 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Cisco has identified a critical vulnerability (CVE-2025-20337, CVSS 10.0) in its ISE and ISE-PIC software that allows unauthenticated remote attackers to execute code as root via crafted API requests. https://t.co/AkyF2eut7P
@WalkureARCH
19 Jul 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
#Cisco alerte sur une faille critique dans ISE permettant à des attaquants non authentifiés d’exécuter du code root 👾 La vulnérabilité CVE-2025-20337 (CVSS 10.0) touche #IdentityServicesEngine et ISE-PIC. https://t.co/n6ElSIrnWM #CyberSecurity #IA2025 #InnovationIA
@meg_ai_fr
18 Jul 2025
0 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️Vulnerabilidades en Cisco Identity Services Engine ❗CVE-2025-20337 ❗CVE-2025-20281 ❗CVE-2025-20282 ➡️Más info: https://t.co/2wTTfVhZGX https://t.co/yDYSZz4Zh6
@CERTpy
18 Jul 2025
100 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Critical #Cisco ISE Vulnerability (#CVE-2025-20337): Exploitation, Mitigation, and Best Practices https://t.co/x6NVVJTXOp Educational Purposes!
@UndercodeUpdate
18 Jul 2025
2 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️ Weekly vuln radar. https://t.co/Cd6L8AD6Bt – spot what’s trending before it’s everywhere: CVE-2025-29824 CVE-2025-6543 CVE-2025-20337 CVE-2025-6558 (via @_clem1) CVE-2025-49144 CVE-2025-24985 CVE-2025-20274 CVE-2025-23266 (via @nirohfeld @shirtamari) CVE-2021-41773
@ptdbugs
18 Jul 2025
129 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Critical vulnerabilities in Cisco ISE (CVE-2025-20337), VMware, Oracle, and Fortinet demand immediate patching to prevent exploitation. Major cybercrime operations like Ryuk ransomware and global data breaches continue to evolve threats. #CiscoSecurity #… https://t.co/azFfED65p
@TweetThreatNews
18 Jul 2025
89 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨ثغرة أمنية حرجة في Cisco ISE تُمكّن من تنفيذ أوامر كـ root عن بُعد كشفت شركة Cisco عن ثغرة أمنية خطيرة (درجة خطورة 10/10) تؤثر على Cisco Identity Services Engine (ISE) وISE Passive Identity Con
@buhaimedi
17 Jul 2025
1649 Impressions
5 Retweets
8 Likes
4 Bookmarks
0 Replies
0 Quotes
🚨CVE-2025-20337: A vulnerability in a specific API of Cisco ISE and Cisco ISE-PIC could allow an unauthenticated, remote attacker to execute arbitrary code on the underlying operating system as root. CVSS: 10 The attacker does not require any valid credentials to exploit thi
@DarkWebInformer
17 Jul 2025
7739 Impressions
28 Retweets
63 Likes
10 Bookmarks
1 Reply
0 Quotes
🚨 #Cisco's Identity Services Engine Hit by Maximum Severity Vulnerability: #CVE-2025-20337 Shocks Cybersecurity World https://t.co/suWg2SGYly
@UndercodeNews
17 Jul 2025
12 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Cisco warns of critical ISE flaw (CVE-2025-20337, CVSS 10.0) allowing unauthenticated remote code execution as root. Affects ISE/ISE-PIC 3.3 & 3.4. Patch now: ISE 3.3 P7, 3.4 P2. Details: https://t.co/6BkhlHe5CI #Cybersecurity
@_F2po_
17 Jul 2025
5 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨CRITICAL Cisco ISE vulnerability (CVE-2025-20337) allows pre-auth command execution! Unauthenticated attackers can store malicious files, execute code, and gain root. PATCH NOW! Details: [URL] https://t.co/1SYkOPsoQf
@fishpassenger
17 Jul 2025
12 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
A critical vulnerability (CVE-2025-20337) in Cisco's Identity Services Engine poses a severe risk by allowing unauthenticated attackers to execute arbitrary code. Despite the absence of reported exploitations so far, immediate action is recommended for all affected users to up...
@CybrPulse
17 Jul 2025
34 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
A critical vulnerability (CVE-2025-20337) in Cisco ISE versions 3.3 and 3.4 allows unauthenticated remote code execution and root access. Immediate patching to ISE 3.3 Patch 7 or 3.4 Patch 2 is essential. #Cisco #CyberRisk #Japan https://t.co/xpKIZHUauE
@TweetThreatNews
17 Jul 2025
20 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 #Cisco's Identity Engine Under Fire: Critical #CVE-2025-20337 Vulnerability Exposes Systems to Root Exploits https://t.co/mBr7i6MZry
@UndercodeNews
17 Jul 2025
38 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Critical Cisco ISE Vulnerability Allows Unauthenticated Remote Root Code Execution Cisco has disclosed CVE-2025-20337, a critical vulnerability (CVSS 10.0) in Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC) versions 3.3 and 3.4. The flaw allows https:
@dCypherIO
17 Jul 2025
72 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
A critical vulnerability in Cisco's Identity Services Engine (ISE), identified as CVE-2025-20337, allows remote code execution with root privileges, scoring a CVSS of 10. Detecting and patching this flaw is crucial, as it poses serious risks to affected systems and remains cri...
@CybrPulse
17 Jul 2025
31 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.3.0:-:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F1B9C2C1-59A4-49A0-9B74-83CCB063E55D"
},
{
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.3.0:patch1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DFD29A0B-0D75-4EAB-BCE0-79450EC75DD0"
},
{
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.3.0:patch2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E6C94CC4-CC08-4DAF-A606-FDAFC92720A9"
},
{
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.3.0:patch3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BB069EA3-7B8C-42B5-8035-2EE5ED3F56E4"
},
{
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.3.0:patch4:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FF8B81A6-BF44-4E5F-B167-39F61DDCA026"
},
{
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.3.0:patch5:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "56E0F0EC-3E66-4866-89F5-89B331F3F517"
},
{
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.3.0:patch6:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2E3E8937-2859-4A2A-91C0-05F674EF0466"
},
{
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.4.0:-:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D23905E0-E525-49B1-8E5F-4EB42D186768"
},
{
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.4.0:patch1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "74509498-38EF-4345-9583-CEF5C26CA1D8"
},
{
"criteria": "cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.3.0:-:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3CA3315D-8A45-43F4-A0F0-094D325F285B"
},
{
"criteria": "cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.3.0:patch1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B3736136-9FD8-4B12-B119-EA15201224D9"
},
{
"criteria": "cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.3.0:patch2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "654ED77E-22D3-4E76-9E6D-B1581F5982F0"
},
{
"criteria": "cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.3.0:patch3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A0648EE9-F042-479F-9AAB-C6B5DBC46511"
},
{
"criteria": "cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.3.0:patch4:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "83F3BA58-4F38-41C8-956F-38A2F44EECE4"
},
{
"criteria": "cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.3.0:patch5:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6C30FA1D-91E2-48C5-B181-A88FDF668278"
},
{
"criteria": "cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.3.0:patch6:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "768215B1-80B7-40FF-8772-BA4C0B3913F5"
},
{
"criteria": "cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.4.0:-:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CC0525FD-C4D7-4B48-BF35-1791391AB148"
},
{
"criteria": "cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.4.0:patch1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "68C96F6B-51EE-4D03-9598-CBFD16DA22EF"
}
],
"operator": "OR"
}
]
}
]