CVE-2025-20124 PoC — Cisco ISE 代码问题漏洞

Source

https://github.com/Yuri08loveElaina/CVE-2025-20124_and_CVE-2025-20125

Associated Vulnerability

Title:Cisco ISE 代码问题漏洞 (CVE-2025-20124)
Description:Cisco ISE是美国思科（Cisco）公司的一个 NAC 解决方案。用于管理零信任架构中的端点、用户和设备对网络资源的访问。 Cisco ISE存在代码问题漏洞，该漏洞源于存在API反序列化问题，导致攻击者可以root权限执行任意命令。

Description

A vulnerability in an API of Cisco ISE could allow an authenticated, remote attacker to execute arbitrary commands as the root user on an affected device. This vulnerability is due to insecure deserialization of user-supplied Java byte streams by the affected software.

Readme

## 🗒️ How to use ##

- ## cve‑20124 (RCE): ##

> python3 Exploit.py --url https://ise.example.com 
--Session your_ISE_Session_Token --DESER-CMD "Touch /TMP /PWWNED"

- ## cve‑20125 (authorized bypass): ## 

>python3 Exploit.py --url https://ise.example.com 
--Session your_ISE_Session_Token --Bbypass

- ⚠️ Important note
Both drive require an ISE administrator to log in (the administrator only read is enough)

- This is only an example; In the actual  you need:

> The Java utility chain is true to sequentially self -transparent CVE‑201224.

> Final score authentication (using assumption/API/V1/Admin/*).


🔍 Reference source
Cisco ADVISORY CVE‑20124 & Cve‑20125 - Receive RCE level & ignore the required authentication.

File Snapshot


 [4.0K]  /data/pocs/66bc5c0ff8e8e90286351aff80c19e1501a8eda6
├── [2.9K]  Exploit.py
└── [ 748]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!