CVE-2025-20363 | Cisco IOS/IOS XR/ASA/IOS XE/Firepower Threat Defense Web Services heap-based overflow (cisco-sa-http-code-exec-WmfP3h3O)

A vulnerability labeled as critical has been found in Cisco IOS, IOS XR, ASA, IOS XE and Firepower Threat Defense. This affects an unknown part of the component Web Services. Executing manipulation can lead to heap-based buffer overflow.

This vulnerability appears as CVE-2025-20363. The attack may be performed from remote. There is no available exploit.

The affected component should be upgraded.VulDB Recent EntriesRead More