Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

CVE-2025-20363

A vulnerability in the web services of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software, Cisco Secure Firewall Threat Defense (FTD) Software, Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, remote attacker (Cisco ASA and FTD Software) or authenticated, remote attacker (Cisco IOS, IOS XE, and IOS XR Software) with low user privileges to execute arbitrary code on an affected device. This vulnerability is due to improper validation of user-supplied input in HTTP requests. An attacker could exploit this vulnerability by sending crafted HTTP requests to a targeted web service on an affected device after obtaining additional information about the system, overcoming exploit mitigations, or both. A successful exploit could allow the attacker to execute arbitrary code as root, which may lead to the complete compromise of the affected device. For more information about this vulnerability, see the Details ["#details"] section of this advisory.

SeverityCRITICAL
CVSS9.0
CWECWE-122
KEV
Published
Modified

Related Products

Product Advisory Evidence
Cisco IOS cisco-sa-http-code-exec-WmfP3h3O Cisco OpenVuln
Cisco Secure Firewall Threat Defense Virtual cisco-sa-http-code-exec-WmfP3h3O Cisco OpenVuln
Cisco Secure Firewall 1200 Series cisco-sa-http-code-exec-WmfP3h3O Cisco OpenVuln
Cisco Secure Firewall 4200 Series cisco-sa-http-code-exec-WmfP3h3O Cisco OpenVuln
Cisco Secure Firewall 3100 Series cisco-sa-http-code-exec-WmfP3h3O Cisco OpenVuln
Cisco Adaptive Security Virtual Appliance (ASAv) cisco-sa-http-code-exec-WmfP3h3O Cisco OpenVuln
Cisco Firepower 4100 Series cisco-sa-http-code-exec-WmfP3h3O Cisco OpenVuln
Cisco Firepower 9000 Series cisco-sa-http-code-exec-WmfP3h3O Cisco OpenVuln
Cisco 3000 Series Industrial Security Appliances (ISA) cisco-sa-http-code-exec-WmfP3h3O Cisco OpenVuln
Cisco ASA 5500-X Series Firewalls cisco-sa-http-code-exec-WmfP3h3O Cisco OpenVuln
Cisco Firepower 1000 Series cisco-sa-http-code-exec-WmfP3h3O Cisco OpenVuln
Cisco Firepower 2100 Series cisco-sa-http-code-exec-WmfP3h3O Cisco OpenVuln
Cisco Secure Firewall Threat Defense (FTD) Software cisco-sa-http-code-exec-WmfP3h3O Cisco OpenVuln
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software cisco-sa-http-code-exec-WmfP3h3O Cisco OpenVuln
Cisco IOS XR Software cisco-sa-http-code-exec-WmfP3h3O Cisco OpenVuln
Cisco IOS XE Software cisco-sa-http-code-exec-WmfP3h3O Cisco OpenVuln
Cisco Catalyst 9600 Series Switches cisco-sa-http-code-exec-WmfP3h3O Cisco OpenVuln · software-dependent
Cisco Catalyst 9500 Series Switches cisco-sa-http-code-exec-WmfP3h3O Cisco OpenVuln · software-dependent
Cisco Catalyst 9400 Series Switches cisco-sa-http-code-exec-WmfP3h3O Cisco OpenVuln · software-dependent
Cisco Catalyst 9200 Series Switches cisco-sa-http-code-exec-WmfP3h3O Cisco OpenVuln · software-dependent
Cisco Catalyst 9300 Series Switches cisco-sa-http-code-exec-WmfP3h3O Cisco OpenVuln · software-dependent