CNNVD-202508-1704 Information

Aug 14, 2025 cve

CNNVD ID

CNNVD-202508-1704

CVE-2025-20265

CNNVD Published: 2025-08-14

Description (Chinese)

Cisco Secure Firewall Management Center是美国思科（Cisco）公司的一个强大的网络安全管理工具。 Cisco Secure Firewall Management Center存在注入漏洞，该漏洞源于RADIUS认证阶段输入处理不当，可能导致执行任意命令。

Description (English)

Cisco Security Firewall Management Center is a powerful cybersecurity management tool for Cisco. Cisco Security Firewall Management Center has an infusion loophole, which stems from the inappropriate handling of inputs at the RADIUS certification stage, which may lead to the execution of arbitrary orders.

Hazard Level

Low

Vulnerability Type

注入

Affected Vendor

思科

Published

2025-08-14

Last Modified

2026-02-24

References

https://www.theregister.com/2025/08/15/cisco_secure_firewall_management_bug/ https://www.bleepingcomputer.com/news/security/cisco-warns-of-max-severity-flaw-in-firewall-management-center/ https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-radius-rce-TNBKf79 https://nvd.nist.gov/vuln/detail/CVE-2025-20265

Patch

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-radius-rce-TNBKf79

Share on: