[Vulnerability Alert] A major security vulnerability exists in Cisco's firewall system (CVE-2025-20265)

Posted Date: 2025/08/19

Subject: [Vulnerability Alert] A major security vulnerability exists in Cisco's firewall system (CVE-2025-20265)
Content:
- Forwarded from Taiwan Computer Emergency Response Team/Coordination Center TWCERTCC-200-202508-00000011
- Cisco Secure Firewall Management Center (FMC) is a centralized management platform used to unify the management and monitoring of Cisco firewall products, providing a comprehensive view of threat defense, and supporting policy creation, event analysis, traffic monitoring, and device configuration.
- Cisco has released a major security vulnerability advisory (CVE-2025-20265, CVSS: 10.0) and released an updated version. This vulnerability exists when using RADIUS for authentication, allowing an unauthenticated remote attacker to inject arbitrary shell commands and have the device execute the commands.
- This message is only sent to “county/city network centers”. Please assist in forwarding and notifying the units under your jurisdiction.
Affected Platforms:
- Cisco Firewall Management Center (FMC) versions 7.0.7 and 7.7.0 with RADIUS authentication enabled.
Recommended Measures:
- Apply the official solution released on the website: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-radius-rce-TNBKf79
References:
- https://www.twcert.org.tw/tw/cp-169-10326-bd2b5-1.html

Computer and Communications Center
Network Systems Group