Cisco Secure Firewall Management Center vulnerability CVE-2025-20265

Cisco has addressed a critical vulnerability in its Secure Firewall Management Center (FMC) Software, identified as CVE-2025-20265, which has a CVSS score of 10. This vulnerability allows unauthenticated remote attackers to inject arbitrary shell commands that the device would execute.

Cisco Secure Firewall Management Center vulnerability CVE-2025-20265Cisco Secure Firewall Management Center vulnerability CVE-2025-20265

The Cisco Firewall Management Center is designed to analyze network vulnerabilities, prioritize threats, and recommend protective measures. It provides unified firewall management, application control, intrusion prevention, URL filtering, and malware defense, along with real-time visibility across networks.

Cisco Secure Firewall Management Center vulnerability CVE-2025-20265Cisco Secure Firewall Management Center vulnerability CVE-2025-20265

Vulnerability Details

The issue arises from improper handling of user input during the authentication phase. An attacker can exploit this vulnerability by sending crafted input during credential entry for RADIUS authentication, potentially executing commands with high privileges

NPAV offers a robust solution to combat cyber fraud. Protect yourself with our top-tier security product, Z Plus Security