Ce mail provient de l'extérieur, restons vigilants

=====================================================================

                            CERT-Renater

                Note d'Information No. 2025/VULN531
_____________________________________________________________________

DATE                : 20/08/2025

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Cisco Evolved Programmable
                     Network Manager and Cisco Prime Infrastructure,
                     Cisco Identity Services Engine,
                     Cisco Duo Authentication Proxy.

=====================================================================
https://sec.cloudapps.cisco.com/security/center/publicationListing.x
_____________________________________________________________________

Below is the list of Cisco Security Advisories published by Cisco
PSIRT on 2025-August-20.

The following PSIRT security advisories (3 Medium) were published at
16:00 UTC today.

Table of Contents:

1) Cisco Evolved Programmable Network Manager and Cisco Prime
Infrastructure Sensitive Information Disclosure Vulnerability - SIR:
Medium

2) Cisco Identity Services Engine Arbitrary File Upload Vulnerability
- SIR: Medium

3) Cisco Duo Authentication Proxy Information Disclosure Vulnerability
- SIR: Medium

+--------------------------------------------------------------------

1) Cisco Evolved Programmable Network Manager and Cisco Prime
Infrastructure Sensitive Information Disclosure Vulnerability

CVE-2025-20269

SIR: Medium

CVSS Score v(3.1): 6.5

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pi-epnm-TET4GxBX ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pi-epnm-TET4GxBX"]

+--------------------------------------------------------------------

2) Cisco Identity Services Engine Arbitrary File Upload Vulnerability

CVE-2025-20131

SIR: Medium

CVSS Score v(3.1): 4.9

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-file-upload-qksX6C8g ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-file-upload-qksX6C8g"]

+--------------------------------------------------------------------

3) Cisco Duo Authentication Proxy Information Disclosure Vulnerability

CVE-2025-20345

SIR: Medium

CVSS Score v(3.1): 4.9

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-authproxlog-SxczXQ63 ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-authproxlog-SxczXQ63"]


=========================================================
+ CERT-RENATER        |    tel : 01-53-94-20-44         +
+ 23/25 Rue Daviel    |    fax : 01-53-94-20-41         +
+ 75013 Paris         |   email:cert@support.renater.fr +
=========================================================