Security Advisory

Cisco Product Security Update Advisory

  • Sep 30 2025
Cisco Product Security Update Advisory

Overview

 

Cisco has released security updates that address vulnerabilities in Cisco products. Users of affected products are advised to update to the latest version.

 

 

Affected Products

 

CVE-2025-20333

 

Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Versions: 9.12.0 and later but not earlier than 9.12.4.72
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Versions: 9.14.0 and later but earlier than 9.14.4.28
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software version: 9.16.0 or later and less than 9.16.4.85
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software version: 9.17.0 or later and less than 9.17.1.45
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software version: 9.18.0 or later and less than 9.18.4.47
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software version: 9.19.0 or later and less than 9.19.1.37
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software version: 9.20.0 or later and less than 9.20.3.7
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software version: 9.22.0 or later and less than 9.22.1.3
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.0.0 or later and less than 7.0.8.1
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.1.0 or later and less than 7.2.9
Cisco Secure Firewall Threat Defense (FTD) Software version: 7.2.0 or later and less than 7.2.9
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.3.0 or later and less than 7.4.2.4
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.4.0 or later and less than 7.4.2.4
Cisco Secure Firewall Threat Defense (FTD) Software version: 7.6.0 or later and less than 7.6.1

 

CVE-2025-20362

 

Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.12.0 or later and less than 9.12.4.72
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.14.0 or later and less than 9.14.4.28
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software version: 9.16.0 or later and less than 9.16.4.85
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software version: 9.17.0 or later and less than 9.18.4.67
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software version: 9.18.0 or later and less than 9.18.4.67
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software version: 9.19.0 or later and less than 9.20.4.10
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software version: 9.20.0 or later and less than 9.20.4.10
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software version: 9.22.0 or later and less than 9.22.2.14
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software version: 9.23.0 or later and less than 9.23.1.19
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.0.0 or later and less than 7.0.8.1
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.1.0 or later and less than 7.2.10.2
Cisco Secure Firewall Threat Defense (FTD) Software version: 7.2.0 or later and less than 7.2.10.2
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.3.0 or later and less than 7.4.2.4
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.4.0 or later and less than 7.4.2.4
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.6.0 or later and less than 7.6.2.1
Cisco Secure Firewall Threat Defense (FTD) Software version: 7.7.0 or later and less than 7.7.10.1

 

CVE-2025-20363

 

Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.12.0 or later and less than 9.12.4.72
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.14.0 or later and less than 9.14.4.28
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software version: 9.16.0 or later and less than 9.16.4.84
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software version: 9.17.0 or later and less than 9.18.4.57
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.18.0 or later and less than 9.18.4.57
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software version: 9.19.0 or later and less than 9.19.1.42
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software version: 9.20.0 or later and less than 9.20.3.16
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software version: 9.22.0 or later and less than 9.22.2
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software version: 9.23.0 or later and less than 9.23.1.3
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.0.0 or later and less than 7.0.8
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.1.0 or later and less than 7.2.10
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.2.0 or later and less than 7.2.10
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.3.0 or later and less than 7.4.2.3
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.4.0 or later and less than 7.4.2.3
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.6.0 or later and less than 7.6.1
Cisco Secure Firewall Threat Defense (FTD) Software version: 7.7.0 or later and less than 7.7.10

 

 

Resolved Vulnerabilities

 

Remote Code Execution Vulnerability in the VPN Web Server in Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software (CVE-2025-20333)
Authentication Bypass Vulnerability in the VPN Web Server in Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software (CVE-2025-20362)
Remote code execution vulnerability in web services in Cisco Secure Firewall Adaptive Security Appliance (ASA) Software, Cisco Secure Firewall Threat Defense (FTD) Software, Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software (CVE-2025-20363)

 

 

Vulnerability Patches

Vulnerability Patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

 

 

CVE-2025-20333

 

Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.12.4.72
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.14.4.28
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.16.4.85
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.17.1.45
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.18.4.47
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software version: 9.19.1.37
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.20.3.7
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.22.1.3
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.0.8.1
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.2.9
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.4.2.4
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.6.1

 

CVE-2025-20362

 

Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.12.4.72
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.14.4.28
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.16.4.85
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.18.4.67
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.20.4.10
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.22.2.14
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.23.1.19
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.0.8.1
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.2.10.2
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.4.2.4
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.6.2.1
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.7.10.1

 

CVE-2025-20363

 

Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.12.4.72
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.14.4.28
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.16.4.84
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software version: 9.18.4.57
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.19.1.42
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.20.3.16
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.22.2
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Version: 9.23.1.3
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.0.8
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.2.10
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.4.2.3
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.6.1
Cisco Secure Firewall Threat Defense (FTD) Software Version: 7.7.10

 

 

References

 

[1] Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-webvp..
[2] Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Unauthorized Access Vulnerability
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-webvp..
[3] Cisco Secure Firewall Adaptive Security Appliance Software, Secure Firewall Threat Defense Software, IOS Software, IOS XE Software, and IOS XR Software Web Services Remote Code Execution Vulnerability
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-http-code-ex..

Tags:
Previous Post

Next Post