CVE-2025-20265

Medienbericht

EPSS 0.72%
Veröffentlicht 14.08.2025 16:30:03
Zuletzt bearbeitet 16.08.2025 01:15:27
Quelle psirt@cisco.com
Teams Watchlist Login
Unerledigt Login

A vulnerability in the RADIUS subsystem implementation of Cisco Secure Firewall Management Center (FMC) Software could allow an unauthenticated, remote attacker to inject arbitrary shell commands that are executed by the device. 

This vulnerability is due to a lack of proper handling of user input during the authentication phase. An attacker could exploit this vulnerability by sending crafted input when entering credentials that will be authenticated at the configured RADIUS server. A successful exploit could allow the attacker to execute commands at a high privilege level.
Note: For this vulnerability to be exploited, Cisco Secure FMC Software must be configured for RADIUS authentication for the web-based management interface, SSH management, or both.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Cisco ≫ Secure Firewall Management Center Version7.0.7

Cisco ≫ Secure Firewall Management Center Version7.7.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.72%	0.717

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
psirt@cisco.com	10	3.9	6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.

https://www.heise.de/news/Sicherheitspatches-Cisco-schliesst-Angriffspunkte-in-Firewalls-10531093.html

Medienbericht

heise Security

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-radius-rce-TNBKf79

Vendor Advisory

https://www.bleepingcomputer.com/news/security/cisco-warns-of-max-severity-flaw-in-firewall-management-center/

https://www.theregister.com/2025/08/15/cisco_secure_firewall_management_bug/

https://nvd.nist.gov/vuln/detail/CVE-2025-20265

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-20265

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-20265

EUVD