CVE-2025-20363

🗓️ 25 Sep 2025 16:15:32Reported by [email protected]Type

Unauthenticated or low-privilege attackers can execute arbitrary code as root via crafted HTTP requests on Cisco Secure Firewall ASA and FTD, and IOS family devices.

Reporter	Title	Published	Views	Family All 21
ATTACKERKB	CVE-2025-20362	25 Sep 202516:12	–	attackerkb
BDU FSTEC	The vulnerability in the web server of microprogramming-based network interface controllers of Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense (FTD) for operating systems Cisco IOS, Cisco IOS XR, and Cisco IOS XE allows a attacker to cause service interruptions.	26 Sep 202500:00	–	bdu_fstec
Circl	CVE-2025-20363	25 Sep 202516:03	–	circl
Cisco	Cisco Secure Firewall Adaptive Security Appliance Software, Secure Firewall Threat Defense Software, IOS Software, IOS XE Software, and IOS XR Software Web Services Remote Code Execution Vulnerability	25 Sep 202516:00	–	cisco
Tenable Nessus	Cisco Secure Firewall Adaptive Security Appliance Software Web Services RCE (cisco-sa-http-code-exec-WmfP3h3O)	26 Sep 202500:00	–	nessus
Tenable Nessus	Cisco Secure Firewall Threat Defense Software Web Services RCE (cisco-sa-http-code-exec-WmfP3h3O)	26 Sep 202500:00	–	nessus
Tenable Nessus	Cisco IOS Software Web Services Remote Code Execution (cisco-sa-http-code-exec-WmfP3h3O)	26 Sep 202500:00	–	nessus
Tenable Nessus	Cisco IOS XE Software Web Services Remote Code Execution (cisco-sa-http-code-exec-WmfP3h3O)	26 Sep 202500:00	–	nessus
CNNVD	Cisco多款产品安全漏洞	25 Sep 202500:00	–	cnnvd
CVE	CVE-2025-20363	25 Sep 202516:12	–	cve