CVE-2025-20393 (GCVE-0-2025-20393)
Vulnerability from cvelistv5 – Published: 2025-12-17 16:47 – Updated: 2025-12-18 04:55
VLAI?
CISA
Title
Cisco Secure Email Gateway and Cisco Secure Email and Web Manager Remote Command Execution Vulnerability
Summary
Cisco is aware of a potential vulnerability. Cisco is currently investigating and will update these details as appropriate as more information becomes available.
Severity ?
10 (Critical)
CWE
- CWE-20 - Improper Input Validation
Assigner
References
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| Cisco | Cisco Secure Email |
Affected:
14.0.0-698
Affected: 13.5.1-277 Affected: 13.0.0-392 Affected: 14.2.0-620 Affected: 13.0.5-007 Affected: 13.5.4-038 Affected: 14.2.1-020 Affected: 14.3.0-032 Affected: 15.0.0-104 Affected: 15.0.1-030 Affected: 15.5.0-048 Affected: 15.5.1-055 Affected: 15.5.2-018 Affected: 16.0.0-050 Affected: 15.0.3-002 Affected: 16.0.0-054 Affected: 15.5.3-022 Affected: 16.0.1-017 |
|||||||
|
|||||||||
CISA Known Exploited Vulnerability
Data from the CISA Known Exploited Vulnerabilities Catalog
Date added: 2025-12-17
Due date: 2025-12-24
Required action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Used in ransomware: Unknown
Notes: Please adhere to Cisco's guidelines to assess exposure and mitigate risks. Check for signs of potential compromise on all internet accessible Cisco products affected by this vulnerability. Apply any final mitigations provided by the vendor as soon as they become available. For more information please see: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sma-attack-N9bf4 ; https://nvd.nist.gov/vuln/detail/CVE-2025-20393
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-20393",
"options": [
{
"Exploitation": "active"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-12-17T00:00:00+00:00",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-12-18T04:55:21.334Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"references": [
{
"tags": [
"government-resource"
],
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-20393"
}
],
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unknown",
"product": "Cisco Secure Email",
"vendor": "Cisco",
"versions": [
{
"status": "affected",
"version": "14.0.0-698"
},
{
"status": "affected",
"version": "13.5.1-277"
},
{
"status": "affected",
"version": "13.0.0-392"
},
{
"status": "affected",
"version": "14.2.0-620"
},
{
"status": "affected",
"version": "13.0.5-007"
},
{
"status": "affected",
"version": "13.5.4-038"
},
{
"status": "affected",
"version": "14.2.1-020"
},
{
"status": "affected",
"version": "14.3.0-032"
},
{
"status": "affected",
"version": "15.0.0-104"
},
{
"status": "affected",
"version": "15.0.1-030"
},
{
"status": "affected",
"version": "15.5.0-048"
},
{
"status": "affected",
"version": "15.5.1-055"
},
{
"status": "affected",
"version": "15.5.2-018"
},
{
"status": "affected",
"version": "16.0.0-050"
},
{
"status": "affected",
"version": "15.0.3-002"
},
{
"status": "affected",
"version": "16.0.0-054"
},
{
"status": "affected",
"version": "15.5.3-022"
},
{
"status": "affected",
"version": "16.0.1-017"
}
]
},
{
"defaultStatus": "unknown",
"product": "Cisco Secure Email and Web Manager",
"vendor": "Cisco",
"versions": [
{
"status": "affected",
"version": "13.6.2-023"
},
{
"status": "affected",
"version": "13.6.2-078"
},
{
"status": "affected",
"version": "13.0.0-249"
},
{
"status": "affected",
"version": "13.0.0-277"
},
{
"status": "affected",
"version": "13.8.1-052"
},
{
"status": "affected",
"version": "13.8.1-068"
},
{
"status": "affected",
"version": "13.8.1-074"
},
{
"status": "affected",
"version": "14.0.0-404"
},
{
"status": "affected",
"version": "12.8.1-002"
},
{
"status": "affected",
"version": "14.1.0-227"
},
{
"status": "affected",
"version": "13.6.1-201"
},
{
"status": "affected",
"version": "14.2.0-203"
},
{
"status": "affected",
"version": "14.2.0-212"
},
{
"status": "affected",
"version": "12.8.1-021"
},
{
"status": "affected",
"version": "13.8.1-108"
},
{
"status": "affected",
"version": "14.2.0-224"
},
{
"status": "affected",
"version": "14.3.0-120"
},
{
"status": "affected",
"version": "15.0.0-334"
},
{
"status": "affected",
"version": "15.5.1-024"
},
{
"status": "affected",
"version": "15.5.1-029"
},
{
"status": "affected",
"version": "15.5.2-005"
},
{
"status": "affected",
"version": "16.0.0-195"
},
{
"status": "affected",
"version": "15.5.3-017"
},
{
"status": "affected",
"version": "16.0.1-010"
},
{
"status": "affected",
"version": "15.0.1-035"
},
{
"status": "affected",
"version": "16.0.2-088"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Cisco is aware of a potential vulnerability.\u0026nbsp; Cisco is currently investigating and\u0026nbsp;will update these details as appropriate\u0026nbsp;as more information becomes available."
}
],
"exploits": [
{
"lang": "en",
"value": "In December 2025, the Cisco Product Security Incident Response Team (PSIRT) became aware of potentially malicious activity that targets Cisco Secure Email Gateway and Cisco Secure Email and Web Manager appliances."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 10,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"format": "cvssV3_1"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "Improper Input Validation",
"lang": "en",
"type": "cwe"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-12-17T16:47:13.128Z",
"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"shortName": "cisco"
},
"references": [
{
"name": "cisco-sa-sma-attack-N9bf4",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sma-attack-N9bf4"
}
],
"source": {
"advisory": "cisco-sa-sma-attack-N9bf4",
"defects": [
"CSCws36549"
],
"discovery": "EXTERNAL"
},
"title": "Cisco Secure Email Gateway and Cisco Secure Email and Web Manager Remote Command Execution Vulnerability"
}
},
"cveMetadata": {
"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"assignerShortName": "cisco",
"cveId": "CVE-2025-20393",
"datePublished": "2025-12-17T16:47:13.128Z",
"dateReserved": "2024-10-10T19:15:13.266Z",
"dateUpdated": "2025-12-18T04:55:21.334Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"cisa_known_exploited": {
"cveID": "CVE-2025-20393",
"cwes": "[\"CWE-20\"]",
"dateAdded": "2025-12-17",
"dueDate": "2025-12-24",
"knownRansomwareCampaignUse": "Unknown",
"notes": "Please adhere to Cisco\u0027s guidelines to assess exposure and mitigate risks. Check for signs of potential compromise on all internet accessible Cisco products affected by this vulnerability. Apply any final mitigations provided by the vendor as soon as they become available. For more information please see: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sma-attack-N9bf4 ; https://nvd.nist.gov/vuln/detail/CVE-2025-20393",
"product": "Multiple Products",
"requiredAction": "Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.",
"shortDescription": "Cisco Secure Email Gateway, Secure Email, AsyncOS Software, and Web Manager appliances contains an improper input validation vulnerability that allows threat actors to execute arbitrary commands with root privileges on the underlying operating system of an affected appliance.",
"vendorProject": "Cisco",
"vulnerabilityName": "Cisco Multiple Products Improper Input Validation Vulnerability"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2025-20393\",\"sourceIdentifier\":\"psirt@cisco.com\",\"published\":\"2025-12-17T17:15:48.523\",\"lastModified\":\"2025-12-18T15:41:16.840\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Cisco is aware of a potential vulnerability.\u0026nbsp; Cisco is currently investigating and\u0026nbsp;will update these details as appropriate\u0026nbsp;as more information becomes available.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"psirt@cisco.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H\",\"baseScore\":10.0,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":6.0}]},\"cisaExploitAdd\":\"2025-12-17\",\"cisaActionDue\":\"2025-12-24\",\"cisaRequiredAction\":\"Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.\",\"cisaVulnerabilityName\":\"Cisco Multiple Products Improper Input Validation Vulnerability\",\"weaknesses\":[{\"source\":\"psirt@cisco.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:asyncos:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"16.0.3-044\",\"matchCriteriaId\":\"DF5703ED-9ACE-47AA-986E-0481AD02A5E9\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:cisco:secure_email_and_web_manager_virtual_appliance_m100v:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C9613A5-B198-4AD2-BC74-F21ABAF79174\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:cisco:secure_email_and_web_manager_virtual_appliance_m300v:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"57831FD6-1CF3-4ABE-81BA-2576418F9083\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:cisco:secure_email_and_web_manager_virtual_appliance_m600v:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"67E804AE-4743-44AD-A364-504B0AB0D9BF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:cisco:secure_email_gateway_virtual_appliance_c100v:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5B6FBC8A-8187-4903-B786-6CF341C142B5\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:cisco:secure_email_gateway_virtual_appliance_c300v:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"68864429-9730-43E9-96C3-20B9035BB291\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:cisco:secure_email_gateway_virtual_appliance_c600v:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B52D8B2B-E9AE-4B02-87BD-9CF9FA95906A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:secure_email_and_web_manager_m170:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3057023B-AD68-4953-A780-75EA416A7B94\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:secure_email_and_web_manager_m190:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B87164B6-4717-4968-86F7-C62EB677FC50\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:secure_email_and_web_manager_m195:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"10BD81D0-D81A-4361-B4E8-D674732A2A33\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:secure_email_and_web_manager_m380:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D28903F8-3C4D-4337-9721-CEC108A7E2D5\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:secure_email_and_web_manager_m390:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"84ACD394-2E45-4E8E-A342-AC57935C7038\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:secure_email_and_web_manager_m390x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6112D56B-B68B-40B0-8EB9-3315533110C7\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:secure_email_and_web_manager_m395:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8A1198BC-C934-4C26-887D-D599E8128FD3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:secure_email_and_web_manager_m680:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"10374BA0-E7DD-4930-8C58-251F98B75A11\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:secure_email_and_web_manager_m690:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD265B49-C691-44B3-A505-DC704E80313C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:secure_email_and_web_manager_m690x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E37CFC3A-1752-4C66-BD32-CFFA46C3E6AD\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:secure_email_and_web_manager_m695:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"830693AC-A737-43B9-BBB4-E3A1C950C47F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:secure_email_gateway_c195:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7B1322B8-1CF9-4B17-9A58-38788051ED4F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:secure_email_gateway_c395:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"139A640B-1957-4953-AA88-9D373A5152D1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:secure_email_gateway_c695:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F08EA2AD-618B-4834-A52D-73F6A4502DF1\"}]}]}],\"references\":[{\"url\":\"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sma-attack-N9bf4\",\"source\":\"psirt@cisco.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-20393\",\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"tags\":[\"US Government Resource\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-20393\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"active\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-12-17T20:50:41.920501Z\"}}}], \"references\": [{\"url\": \"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-20393\", \"tags\": [\"government-resource\"]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-12-17T17:01:24.075Z\"}}], \"cna\": {\"title\": \"Cisco Secure Email Gateway and Cisco Secure Email and Web Manager Remote Command Execution Vulnerability\", \"source\": {\"defects\": [\"CSCws36549\"], \"advisory\": \"cisco-sa-sma-attack-N9bf4\", \"discovery\": \"EXTERNAL\"}, \"metrics\": [{\"format\": \"cvssV3_1\", \"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 10, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"CRITICAL\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"vendor\": \"Cisco\", \"product\": \"Cisco Secure Email\", \"versions\": [{\"status\": \"affected\", \"version\": \"14.0.0-698\"}, {\"status\": \"affected\", \"version\": \"13.5.1-277\"}, {\"status\": \"affected\", \"version\": \"13.0.0-392\"}, {\"status\": \"affected\", \"version\": \"14.2.0-620\"}, {\"status\": \"affected\", \"version\": \"13.0.5-007\"}, {\"status\": \"affected\", \"version\": \"13.5.4-038\"}, {\"status\": \"affected\", \"version\": \"14.2.1-020\"}, {\"status\": \"affected\", \"version\": \"14.3.0-032\"}, {\"status\": \"affected\", \"version\": \"15.0.0-104\"}, {\"status\": \"affected\", \"version\": \"15.0.1-030\"}, {\"status\": \"affected\", \"version\": \"15.5.0-048\"}, {\"status\": \"affected\", \"version\": \"15.5.1-055\"}, {\"status\": \"affected\", \"version\": \"15.5.2-018\"}, {\"status\": \"affected\", \"version\": \"16.0.0-050\"}, {\"status\": \"affected\", \"version\": \"15.0.3-002\"}, {\"status\": \"affected\", \"version\": \"16.0.0-054\"}, {\"status\": \"affected\", \"version\": \"15.5.3-022\"}, {\"status\": \"affected\", \"version\": \"16.0.1-017\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Cisco\", \"product\": \"Cisco Secure Email and Web Manager\", \"versions\": [{\"status\": \"affected\", \"version\": \"13.6.2-023\"}, {\"status\": \"affected\", \"version\": \"13.6.2-078\"}, {\"status\": \"affected\", \"version\": \"13.0.0-249\"}, {\"status\": \"affected\", \"version\": \"13.0.0-277\"}, {\"status\": \"affected\", \"version\": \"13.8.1-052\"}, {\"status\": \"affected\", \"version\": \"13.8.1-068\"}, {\"status\": \"affected\", \"version\": \"13.8.1-074\"}, {\"status\": \"affected\", \"version\": \"14.0.0-404\"}, {\"status\": \"affected\", \"version\": \"12.8.1-002\"}, {\"status\": \"affected\", \"version\": \"14.1.0-227\"}, {\"status\": \"affected\", \"version\": \"13.6.1-201\"}, {\"status\": \"affected\", \"version\": \"14.2.0-203\"}, {\"status\": \"affected\", \"version\": \"14.2.0-212\"}, {\"status\": \"affected\", \"version\": \"12.8.1-021\"}, {\"status\": \"affected\", \"version\": \"13.8.1-108\"}, {\"status\": \"affected\", \"version\": \"14.2.0-224\"}, {\"status\": \"affected\", \"version\": \"14.3.0-120\"}, {\"status\": \"affected\", \"version\": \"15.0.0-334\"}, {\"status\": \"affected\", \"version\": \"15.5.1-024\"}, {\"status\": \"affected\", \"version\": \"15.5.1-029\"}, {\"status\": \"affected\", \"version\": \"15.5.2-005\"}, {\"status\": \"affected\", \"version\": \"16.0.0-195\"}, {\"status\": \"affected\", \"version\": \"15.5.3-017\"}, {\"status\": \"affected\", \"version\": \"16.0.1-010\"}, {\"status\": \"affected\", \"version\": \"15.0.1-035\"}, {\"status\": \"affected\", \"version\": \"16.0.2-088\"}], \"defaultStatus\": \"unknown\"}], \"exploits\": [{\"lang\": \"en\", \"value\": \"In December 2025, the Cisco Product Security Incident Response Team (PSIRT) became aware of potentially malicious activity that targets Cisco Secure Email Gateway and Cisco Secure Email and Web Manager appliances.\"}], \"references\": [{\"url\": \"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sma-attack-N9bf4\", \"name\": \"cisco-sa-sma-attack-N9bf4\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Cisco is aware of a potential vulnerability.\u0026nbsp; Cisco is currently investigating and\u0026nbsp;will update these details as appropriate\u0026nbsp;as more information becomes available.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"cwe\", \"cweId\": \"CWE-20\", \"description\": \"Improper Input Validation\"}]}], \"providerMetadata\": {\"orgId\": \"d1c1063e-7a18-46af-9102-31f8928bc633\", \"shortName\": \"cisco\", \"dateUpdated\": \"2025-12-17T16:47:13.128Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-20393\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-12-18T04:55:21.334Z\", \"dateReserved\": \"2024-10-10T19:15:13.266Z\", \"assignerOrgId\": \"d1c1063e-7a18-46af-9102-31f8928bc633\", \"datePublished\": \"2025-12-17T16:47:13.128Z\", \"assignerShortName\": \"cisco\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…