Ref# ADV2025_256 | Date: Aug 6th 2025

---

Cisco has published a security advisory highlighting vulnerabilities in the following products on August 6th, 2025. It is recommended that you take the necessary precautions by ensuring your products are always updated. 

• Cisco Identity Services Engine (ISE) – versions prior to 3.0, versions 3.1, 3.2 and 3.3 
• Cisco ISE Passive Identity Connector (ISE-PIC) – versions prior to 3.0, versions 3.1, 3.2 and 3.3 

For more information on these updates, you can follow these URLs: 

• Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabilities  

• Cisco Security Advisories 

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary. 

PDF Download: Cisco Security Advisory

References 

• Cisco Security Advisories. (August 6th, 2025). Retrieved from Cisco. https://tools.cisco.com/security/center/publicationListing.x  

• Cisco Security Advisory. (August 6th, 2025). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/cisco-security-advisory-av25-488