Cisco Family February 2025 First Round Security Update Advisory
Overview
Cisco(https://www.cisco.com) has released a security update that fixes vulnerabilities in products it has been made. Users of affected systems are advised to update to the latest version.
Affected Products
Cisco IOS XE Software
Cisco IOS XR Software
Cisco ISE Passive Identity Connector
Cisco Identity Services Engine Software
Cisco Secure Email
Cisco Secure Email and Web Manager
Cisco Secure Web Appliance
Cisco TelePresence Video Communication Server (VCS) Expressway
IOS
Resolved Vulnerabilities
Vulnerability in Cisco ISE Passive Identity Connector, Cisco Identity Services Engine Software due to insecure deserialization of a user-supplied Java bytestream by the affected software, which could allow arbitrary command execution (CVE-2025-20124, CVSS 9.9) [1]
Cisco ISE Passive Identity Connector,Vulnerability in Cisco Identity Services Engine Software due to lack of authorization in certain APIs and improper validation of user-supplied data, which could allow attackers to obtain information, modify system configuration, and reload the device (CVE-2025-20125, CVSS 9.1) [2]
Cisco IOS XE Software, Improper error handling when parsing SNMP requests in IOS, which could result in a denial of service (CVE-2025-20169 and 6 others, CVSS 7.7) [3]
Vulnerability in Cisco TelePresence Video Communication Server (VCS) Expressway due to insufficient validation of user input in the web-based administration feature, which could allow arbitrary script command execution (CVE-2025-20179, CVSS 6.1) [4]
Vulnerability in Cisco Secure Web Appliance due to lack of data validation in Cisco Secure Web Appliance, which could allow malware to be downloaded to an endpoint undetected and evade antivirus scanners (CVE-2025-20183, CVSS 5.8) [4]
Vulnerability in Cisco Secure Email, Cisco Secure Email and Web Manager due to lack of data validation, which could allow arbitrary script command execution (CVE-2025-20180, CVSS 4.8) [6]
Vulnerability in Cisco Identity Services Engine Software due to lack of user input validation, allowing arbitrary script command execution (CVE-2025-20204 and 1 other, CVSS 4.8) [7]
Vulnerability in Cisco Secure Email, Cisco Secure Email and Web Manager, and Cisco Secure Web Appliance where the appliance does not protect confidential information it stores in response to SNMP polling requests, resulting in the discovery of confidential information that should be restricted (CVE-2025-20207, CVSS 4.3) [8]
Vulnerability Patches
Product-specific Vulnerability Patches were made available in the 02/05/2025 update. Please refer to the ‘Affected Products’ and ‘Fixed Software’ in the product-specific information in the Referenced Sites below to apply the patches.
Referenced Sites
[1] Cisco Identity Services Engine Insecure Java Deserialization and Authorization Bypass Vulnerabilities
[2] Cisco Identity Services Engine Insecure Java Deserialization and Authorization Bypass Vulnerabilities
[3] Cisco IOS, IOS XE, and IOS XR Software SNMP Denial of Service Vulnerabilities
[4] Cisco Expressway Series Cross-Site Scripting Vulnerability
[5] Cisco Secure Web Appliance Range Request Bypass Vulnerability
[6] Cisco Secure Email and Web Manager and Secure Email Gateway Cross-Site Scripting Vulnerability
[7] Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabilities
[8] Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance SNMP Polling Information Disclosure Vulnerability