CVE-2025-20362 | Cisco ASA/Firepower Threat Defense VPN Web Server authorization (cisco-sa-asaftd-webvpn-YROOTUW)

A vulnerability marked as critical has been reported in Cisco ASA and Firepower Threat Defense. This vulnerability affects unknown code of the component VPN Web Server. The manipulation leads to missing authorization.

This vulnerability is traded as CVE-2025-20362. It is possible to initiate the attack remotely. There is no exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More