[Vulnerability Alert] A major security vulnerability exists in Cisco's firewall system (CVE-2025-20265)

• Subject: [Vulnerability Alert] A major security vulnerability exists in Cisco's firewall system (CVE-2025-20265)
• Content:
  • Forwarded from Taiwan Computer Emergency Response Team/Coordination Center TWCERTCC-200-202508-00000011
  • Cisco Secure Firewall Management Center (FMC) is a centralized management platform used to unify the management and monitoring of Cisco firewall products, providing a comprehensive view of threat defense, and supporting policy creation, event analysis, traffic monitoring, and device configuration.
  • Cisco has released a major security vulnerability advisory (CVE-2025-20265, CVSS: 10.0) and released an updated version. This vulnerability exists when using RADIUS for authentication, allowing an unauthenticated remote attacker to inject arbitrary shell commands and have the device execute the commands.
  • This message is only sent to “county/city network centers”. Please assist in forwarding and notifying the units under your jurisdiction.
• Affected Platforms:
  • Cisco Firewall Management Center (FMC) versions 7.0.7 and 7.7.0 with RADIUS authentication enabled.
• Recommended Measures:
  • Apply the official solution released on the website: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-radius-rce-TNBKf79
• References:
  • https://www.twcert.org.tw/tw/cp-169-10326-bd2b5-1.html

Computer and Communications Center
Network Systems Group