CVE-2025-20363

CRITICAL EPSS 93.7%
Published Sep 25, 20259mo ago · Modified Jun 17, 20261w ago
9.0 CVSS 3.1
Critical
Find Similar
Published Sep 25, 2025 9mo ago
Last Modified Jun 17, 2026 1w ago

Description

A vulnerability in the web services of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software, Cisco Secure Firewall Threat Defense (FTD) Software, Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, remote attacker (Cisco ASA and FTD Software) or authenticated, remote attacker (Cisco IOS, IOS XE, and IOS XR Software) with low user privileges to execute arbitrary code on an affected device. This vulnerability is due to improper validation of user-supplied input in HTTP requests. An attacker could exploit this vulnerability by sending crafted HTTP requests to a targeted web service on an affected device after obtaining additional information about the system, overcoming exploit mitigations, or both. A successful exploit could allow the attacker to execute arbitrary code as root, which may lead to the complete compromise of the affected device. For more information about this vulnerability, see the Details ["#details"] section of this advisory.

CVSS Details

Base Score
9.0
Exploitability
2.2
Impact
6.0
Vector string
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Attack Vector Network
Attack Complexity High
Privileges Required None
User Interaction None
Scope Changed
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
93.7% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-122

Affected Products 29

VendorProductVersionRange
ciscoios_xr6.5.1any
ciscoios_xr6.5.2any
ciscoios_xr6.5.3any
ciscoios_xr6.6.2any
ciscoios_xr6.6.3any
ciscoios_xr6.6.25any
ciscoios_xr6.7.1any
ciscoios_xr6.7.2any
ciscoios_xr6.7.3any
ciscoios_xr6.8.1any
ciscoios_xr6.8.2any
ciscoios_xr6.9.1any
ciscoios_xr6.9.2any
ciscoasr_9001*any
ciscoadaptive_security_appliance_software*≥9.12  –  <9.12.4.72
ciscoadaptive_security_appliance_software*≥9.14  –  <9.14.4.28
ciscoadaptive_security_appliance_software*≥9.16  –  <9.16.4.84
ciscoadaptive_security_appliance_software*≥9.17.1  –  <9.18.4.57
ciscoadaptive_security_appliance_software*≥9.19.1  –  <9.19.1.42
ciscoadaptive_security_appliance_software*≥9.20.1  –  <9.20.3.16
ciscoadaptive_security_appliance_software*≥9.22  –  <9.22.2
ciscoadaptive_security_appliance_software*≥9.23  –  <9.23.1.3
ciscoios*≥12.2\(15\)b  –  ≤15.9\(3\)m11
ciscoios_xe*≥3.2.0sg  –  ≤17.17.1
ciscofirepower_threat_defense*≥7.0.0  –  <7.0.8
ciscofirepower_threat_defense*≥7.1.0  –  <7.2.10
ciscofirepower_threat_defense*≥7.3.0  –  <7.4.2.3
ciscofirepower_threat_defense*≥7.7.0  –  <7.7.10
ciscofirepower_threat_defense7.6.0any

References 1

  • sec.cloudapps.cisco.com https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-http-code-exec-WmfP3h3O
    Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.