Cisco addressed a critical severity vulnerability impacting its Secure Firewall Management Center Software. Tracked as CVE-2025-20265, the vulnerability has a critical severity rating with a CVSS score of 10. Successful exploitation of the vulnerability could allow an unauthenticated, remote attacker to inject arbitrary shell commands executed by the device.
Tag: Cisco Secure Firewall Management Center Software
Cisco Secure Firewall Management Center Software Command Injection Vulnerability (CVE-2024-20424)
Cisco Firewall Management Center Software is vulnerable to a critical severity vulnerability tracked as CVE-2024-20424. Successful exploitation of the vulnerability may allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system as root. Cisco mentioned in the advisory that they are unaware of any public exploitation of the vulnerability.