CNNVD-202508-1709 Information

CNNVD ID

CNNVD-202508-1709

Related CVE

CVE-2025-20306

• CNNVD Published: 2025-08-14

Description (Chinese)

Cisco Secure Firewall Management Center是美国思科（Cisco）公司的一个强大的网络安全管理工具。 Cisco Secure Firewall Management Center存在命令注入漏洞，该漏洞源于HTTP请求参数验证不足，可能导致执行任意命令。

Description (English)

Cisco Security Firewall Management Center is a powerful cybersecurity management tool for Cisco. Cisco Secure Firewall Management Center has a command-infusion loophole, which stems from the insufficient verification of the requested parameters of HTTP, which may lead to the execution of arbitrary orders.

Hazard Level

High

Vulnerability Type

命令注入

Affected Vendor

思科

Published

2025-08-14

Last Modified

2026-02-24

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-cmd-inj-HCRLpFyN https://nvd.nist.gov/vuln/detail/CVE-2025-20306

Patch

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-cmd-inj-HCRLpFyN