VDB
GCVE-VVD-NCSC-2025-204
GCVE-VVD-NCSC-2025-204
Advisory PublishedCVSS 10.0/10
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Weaknesses (CWE)
CWE-269Improper Privilege ManagementCWE-74Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
Risk Scores
CVSS 3.1
10.0/10
Critical · CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Cisco | vers:unknown/>=3.3|<3.3 patch7 | — | — |
| Cisco | vers:unknown/<3.4 patch 2 | — | — |
| Cisco | vers:unknown/<3.3 patch 7 | — | — |
| Cisco | vers:unknown/>=3.4|<3.4 patch2 | — | — |
Aliases
Transitive aliases
CISCO-SA-ISE-AUTH-BYPASS-MVFKVQAUGHSA-2g95-q4q6-2mjqcisco-sa-ise-auth-bypass-mVfKVQAUCISCO-SA-ISE-UNAUTH-RCE-ZAD2GNJ6BDU:2025-07648BDU:2025-08248CNVD-2025-17186GHSA-p9cx-6464-94g4CNVD-2025-15609CNVD-2025-17188WID-SEC-W-2025-1402NCSC-2025-0204GHSA-w8p2-wjjr-hr24cisco-sa-ise-unauth-rce-ZAd2GnJ6GHSA-rc4f-42xm-hvjwCVE-2025-20264CNVD-2025-17187BDU:2025-08631
Browse GCVE Records
100 records in the GCVE database · Updated April 16, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.