Arbitrary Code Execution Vulnerability in Cisco Secure Firewall ASA and FTD Software
CVE-2025-20333

9.9CRITICAL

Key Information:

Vendor: Cisco
Status: Cisco Adaptive Security Appliance (asa) Software; Cisco Firepower Threat Defense Software
Vendor: CVE Published:; 25 September 2025

Badges

👾 Exploit Exists📰 News Worthy

What is CVE-2025-20333?

A vulnerability exists in the VPN web server component of Cisco Secure Firewall Adaptive Security Appliance and Threat Defense Software. This flaw permits an authenticated, remote attacker to execute arbitrary code on the implicated device due to improper validation of user-supplied input in HTTP(S) requests. Attackers possessing valid VPN credentials can exploit this issue by dispatching specially crafted HTTP requests, potentially leading to the complete compromise of the device.

Affected Version(s)

Cisco Adaptive Security Appliance (ASA) Software 9.8.1

Cisco Adaptive Security Appliance (ASA) Software 9.8.1.5

Cisco Adaptive Security Appliance (ASA) Software 9.8.1.7

News Articles

The Hacker News

CVE-2025-20333

Urgent: Cisco ASA Zero-Day Duo Under Attack; CISA Triggers Emergency Mitigation Directive

Cisco ASA zero-days CVE-2025-20333 and 20362 exploited; CISA issues ED 25-03 for urgent patching.

3 hours ago

References

https://sec.cloudapps.cisco.com/security/center/content/C...

CVSS V3.1

Score:

9.9

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Sep 25, 2025
📰
First article discovered by The Hacker News
Sep 25, 2025
Vulnerability published
Sep 25, 2025
Vulnerability Reserved
Oct 10, 2024

JSON