CNNVD-202508-1695 Information

Aug 14, 2025 cve

CNNVD ID

CNNVD-202508-1695

CVE-2025-20237

CNNVD Published: 2025-08-14

Description (Chinese)

Cisco Secure Firewall Adaptive Security Appliance和Cisco Secure Firewall Threat Defense都是美国思科（Cisco）公司的产品。Cisco Secure Firewall Adaptive Security Appliance是一个企业级防火墙软件。Cisco Secure Firewall Threat Defense是一个集成式防火墙平台。 Cisco Secure Firewall Adaptive Security Appliance和Cisco Secure Firewall Threat Defense存在安全漏洞，该漏洞源于命令输入验证不足，可能导致执行任意命令。

Description (English)

Cisco Security Fairive Security Application and Cisco Security Fairwall Threat Defense are all Cisco products. Cisco Security Firewall Adaptive Security Application is an enterprise-level firewall software. Cisco Security Firewall Threat Defense is an integrated firewall platform. There is a security loophole in Cisco Security Fairive Security Application and Cisco Security Fairwall Threat Defense, which arises from inadequate command input validation, which may lead to the execution of arbitrary orders.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

思科

Published

2025-08-14

Last Modified

2026-02-24

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-cmdinj-VEhFeZQ3 https://nvd.nist.gov/vuln/detail/CVE-2025-20237 https://vigilance.fr/vulnerability/Cisco-ASA-code-execution-via-Command-Injection-48015

Patch

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-cmdinj-VEhFeZQ3

Share on: