POC详情: e81ec6804040257756ba7c55e2cc7a61d43f4594

来源
https://github.com/abrewer251/CVE-2025-20281-2-Cisco-ISE-RCE
关联漏洞
标题: Cisco ISE和Cisco ISE-PIC 注入漏洞 (CVE-2025-20281)
描述:Cisco ISE和Cisco ISE-PIC都是美国思科(Cisco)公司的产品。Cisco ISE是一个 NAC 解决方案。用于管理零信任架构中的端点、用户和设备对网络资源的访问。Cisco ISE-PIC是一个组件。 Cisco ISE和Cisco ISE-PIC存在注入漏洞,该漏洞源于输入验证不足,可能导致执行任意代码。
描述
Unauthenticated Python PoC for CVE-2025-20281 RCE against ISE ERS API
介绍
# CVE-2025-20281-2-Cisco-ISE-RCE
Unauthenticated Python PoC for CVE-2025-20281 RCE against Cisco ISE ERS API

# CVE-2025-20281 Unauthenticated PoC

A minimal Python proof-of-concept that exploits the unauthenticated RCE in Cisco ISE’s ERS API (CVE-2025-20281) by injecting arbitrary shell commands into the `InternalUser` resource.  

> **Warning:** Only run against systems you own or have explicit permission to test. Misuse of this tool is illegal.

## Features

- No authentication required  
- Supports two modes:
  - `--whoami` to run `whoami` on the target and display the HTTP response  
  - `--reverse` to spawn a bash reverse shell back to your listener

This script is based on the version loaded here :contentReference[oaicite:2]{index=2}.

## Prerequisites

- Python 3.6+  
- Install dependencies:
  ```bash
  pip install requests urllib3
文件快照

 [4.0K]  /data/pocs/e81ec6804040257756ba7c55e2cc7a61d43f4594
├── [1.0K]  LICENSE
├── [1.7K]  PoC.py
└── [ 854]  README.md

0 directories, 3 files
神龙机器人已为您缓存
备注
    1. 建议优先通过来源进行访问。
    2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
    3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。