Cisco ISE ↗
Cisco · Network / Security
0/100 Critical · exploited
Summary iPlain-English security verdict for Cisco ISE, generated from its current health score, actively-exploited vulnerabilities, and latest supported version.
Cisco ISE currently scores 0/100 — critical, with active exploitation. 3 of its known vulnerabilities are being actively exploited in the wild (CISA KEV), including CVE-2021-44228. Upgrade immediately and review your exposure to the actively-exploited CVEs below.
Disclosure trend iNew CVEs published for Cisco ISE each year (NVD). A higher bar means more disclosures that year — more scrutiny, not necessarily less safe.
'19
'20
'21
'22
'23
'24
'25
'26
⚠ 1 of its known vulnerability is linked to ransomware campaigns (CISA KEV).
Patch priority — what to act on iThe issues to fix first — actively exploited (CISA KEV) first, then by exploitation probability (EPSS), then severity. Each row's "→ fixed in" is the earliest version that patches it; "see advisory" means no fixed version is published.
Most urgent first — actively exploited, then likeliest to be exploited.
CVE-2021-44228 CRITICAL ● exploited ⚠ ransomware Improper input validation EPSS 94% → fixed in 2.4.0 CVE-2025-20281 CRITICAL ● exploited Injection EPSS 33% → see advisory CVE-2025-20337 CRITICAL ● exploited Injection EPSS 1% → see advisory CVE-2025-20124 CRITICAL Insecure deserialization EPSS 10% → fixed in 3.1 CVE-2017-6747 CRITICAL Improper authentication EPSS 2% → see advisory CVE-2025-20125 CRITICAL CWE-285 EPSS 2% → fixed in 3.1 CVE-2025-20282 CRITICAL Improper privilege management EPSS 1% → see advisory CVE-2025-20286 CRITICAL CWE-259 EPSS 0% → see advisoryℹ lifecycle unknown — needs latest supported version