CNNVD-202509-3955 Information
CNNVD ID
CNNVD-202509-3955
Related CVE
- CNNVD Published: 2025-09-25
Description (Chinese)
Cisco IOS等都是美国思科(Cisco)公司的产品。Cisco IOS是一套为其网络设备开发的操作系统。Cisco IOS XR是一套为其网络设备开发的操作系统。Cisco IOS XE是一个操作系统。 Cisco多款产品存在安全漏洞,该漏洞源于HTTP请求中用户输入验证不当,可能导致执行任意代码。以下产品受到影响:Cisco Secure Firewall Adaptive Security Appliance、Cisco Secure Firewall Threat Defense、Cisco IOS、Cisco IOS XE和Cisco IOS XR Software。
Description (English)
Cisco IOS and others are all Cisco products. Cisco IOS is an operating system developed for its network equipment. Cisco IOS XR is an operating system developed for its network equipment. Cisco IOS XE is an operating system. There was a safety gap in the Cisco multi-products, which stemmed from the improper validation of the user input in the HTTP request, which could lead to the enforcement of any code. The following products were affected: Cisco Secure Faire Voluntary Security Application, Cisco Secure Faireall Threat Defense, Cisco IOS XE and Cisco IOS XR Software.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
Cires21
Published
2025-09-25
Last Modified
2026-02-24
References
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-