CVE-2025-20148

HIGH EPSS 32.0%
Published Aug 14, 202510mo ago · Modified Jun 17, 20261w ago
8.5 CVSS 3.1
High
Find Similar
Published Aug 14, 2025 10mo ago
Last Modified Jun 17, 2026 1w ago

Description

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an authenticated, remote attacker to inject arbitrary HTML content into a device-generated document. This vulnerability is due to improper validation of user-supplied data. An attacker could exploit this vulnerability by submitting malicious content to an affected device and using the device to generate a document that contains sensitive information. A successful exploit could allow the attacker to alter the standard layout of the device-generated documents, read arbitrary files from the underlying operating system, and conduct server-side request forgery (SSRF) attacks. To exploit this vulnerability, the attacker must have valid credentials for a user account with at least the role of Security Analyst (Read Only).

CVSS Details

Base Score
8.5
Exploitability
3.1
Impact
4.7
Vector string
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N
Attack Vector Network
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Changed
Confidentiality High
Integrity Low
Availability None

Threat Intelligence

EPSS Exploit Probability
32.0% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-20 Improper Input Validation Validation

Affected Products 19

VendorProductVersionRange
ciscosecure_firewall_management_center7.0.6any
ciscosecure_firewall_management_center7.0.6.1any
ciscosecure_firewall_management_center7.0.6.2any
ciscosecure_firewall_management_center7.0.6.3any
ciscosecure_firewall_management_center7.2.4any
ciscosecure_firewall_management_center7.2.4.1any
ciscosecure_firewall_management_center7.2.5any
ciscosecure_firewall_management_center7.2.5.1any
ciscosecure_firewall_management_center7.2.5.2any
ciscosecure_firewall_management_center7.2.6any
ciscosecure_firewall_management_center7.2.7any
ciscosecure_firewall_management_center7.2.8any
ciscosecure_firewall_management_center7.2.8.1any
ciscosecure_firewall_management_center7.2.9any
ciscosecure_firewall_management_center7.4.0any
ciscosecure_firewall_management_center7.4.1any
ciscosecure_firewall_management_center7.4.1.1any
ciscosecure_firewall_management_center7.4.2any
ciscosecure_firewall_management_center7.4.2.1any

References 1

  • sec.cloudapps.cisco.com https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-html-inj-MqjrZrny
    Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.