CVE-2025-20218

Published Aug 14, 2025
Last updated 7 months ago
CVSS medium 4.9
Overview

Description: A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an authenticated, remote attacker to retrieve sensitive information from an affected device. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending a crafted request to the web-based management interface of an affected device. A successful exploit could allow the attacker to retrieve sensitive information from the affected device. To exploit this vulnerability, the attacker must have valid administrative credentials.
Source: psirt@cisco.com
NVD status: Analyzed
Products: secure_firewall_management_center
Risk scores

CVSS 3.1

Type: Primary
Base score: 4.9
Impact score: 3.6
Exploitability score: 1.2
Vector string: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Severity: MEDIUM
Weaknesses

psirt@cisco.com: CWE-643
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3:*:*:*:*:*:*:*",
            "matchCriteriaId": "6175407A-207E-4844-B150-EA0129C4CBBD",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "45B6E615-F42A-468F-8E40-AD28994B4B1D",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "C4B08264-DA65-4BFF-A973-FF733C7325B1",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.3:*:*:*:*:*:*:*",
            "matchCriteriaId": "CE2A5330-8180-48CE-B22A-1CF24B7B1631",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.4:*:*:*:*:*:*:*",
            "matchCriteriaId": "ACC1D72F-9542-4A62-AA90-C0E6B2095068",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.5:*:*:*:*:*:*:*",
            "matchCriteriaId": "E4F3A97A-3359-40C7-95B0-2AB41C067141",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "B68BA14B-1752-4F05-9331-D556247462C3",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.7:*:*:*:*:*:*:*",
            "matchCriteriaId": "1DE72ABB-B573-43CC-A2AC-D81807970BD4",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.8:*:*:*:*:*:*:*",
            "matchCriteriaId": "535E8ECF-5CE5-4E78-A9EF-6167F4C59C45",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.9:*:*:*:*:*:*:*",
            "matchCriteriaId": "3AE3F1C4-8C7A-48AA-83E5-6F832FA94DD3",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.10:*:*:*:*:*:*:*",
            "matchCriteriaId": "C40B7DC8-220C-4C34-A370-F1EB4B3F9EF1",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.11:*:*:*:*:*:*:*",
            "matchCriteriaId": "5DB186DC-6C03-4868-8218-06BEFC0CE400",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.12:*:*:*:*:*:*:*",
            "matchCriteriaId": "B29670B8-F2D3-46D7-8F34-F44B320DD6FE",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.13:*:*:*:*:*:*:*",
            "matchCriteriaId": "2F04DDF5-2058-4208-A608-3673872450EA",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.14:*:*:*:*:*:*:*",
            "matchCriteriaId": "C9A483AC-A8CF-439C-9009-4DFAB0484BCE",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.15:*:*:*:*:*:*:*",
            "matchCriteriaId": "94E7D836-46E5-4CD5-8BDC-4697D915FE05",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.16:*:*:*:*:*:*:*",
            "matchCriteriaId": "06220CB8-7F16-4D3C-A835-558D5F4D97ED",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.17:*:*:*:*:*:*:*",
            "matchCriteriaId": "82917F5C-CF20-4D97-A981-FE3F8476CCFE",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.18:*:*:*:*:*:*:*",
            "matchCriteriaId": "47E42025-1D1E-4390-AC21-9A1B0FBE8D82",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "52651664-CA65-4812-8226-E104E1BE7864",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "64E0FDB2-D5A4-4749-A182-B0B145DC00D3",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "23B58490-C403-44D5-BDB9-88FAD19ABC2B",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.3:*:*:*:*:*:*:*",
            "matchCriteriaId": "DE33A280-84E4-4B5B-AB31-7A78754413F9",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.4:*:*:*:*:*:*:*",
            "matchCriteriaId": "BA3F9410-02E1-4FE9-9A4B-E504515F4615",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.5:*:*:*:*:*:*:*",
            "matchCriteriaId": "8AAAF924-1ADE-4267-9957-DF060D1D3538",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "4D02863A-1355-4FFE-A6BD-C912697774A0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.7:*:*:*:*:*:*:*",
            "matchCriteriaId": "704E4D3D-D1D2-48D8-A68C-227CC92A1C1D",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.8:*:*:*:*:*:*:*",
            "matchCriteriaId": "80A3D0F1-DA29-4A66-A698-082DB0CFA4B0",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.9:*:*:*:*:*:*:*",
            "matchCriteriaId": "C6B9B536-ADF9-4CE1-86EC-07BCDD65FB92",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.10:*:*:*:*:*:*:*",
            "matchCriteriaId": "1755E718-C726-442B-B203-E9536C546DF9",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.11:*:*:*:*:*:*:*",
            "matchCriteriaId": "AB80FC39-0FCE-49F7-9A28-CE733DBB3572",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.12:*:*:*:*:*:*:*",
            "matchCriteriaId": "F61496C8-9ADE-4A4E-9788-447050691727",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.13:*:*:*:*:*:*:*",
            "matchCriteriaId": "E0780AD6-4F38-4400-AA63-E41879F74B68",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.14:*:*:*:*:*:*:*",
            "matchCriteriaId": "86BA5BA6-1F79-4C89-A3F4-A56E2B664AED",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.15:*:*:*:*:*:*:*",
            "matchCriteriaId": "52C7994F-AA17-467B-919E-A49F0CC9DB47",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.16:*:*:*:*:*:*:*",
            "matchCriteriaId": "9F007F6B-1EAA-468C-8159-78B020DF1E58",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.17:*:*:*:*:*:*:*",
            "matchCriteriaId": "C9053FDE-A6BE-4535-AE36-A323F8B7ACA4",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.18:*:*:*:*:*:*:*",
            "matchCriteriaId": "6E255975-F952-43AB-A577-B8D331DDB3AB",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "81F9AF68-70BD-46DE-B7F2-97C9BD5182A9",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.0.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "D1D808CD-B030-4334-A286-9B3A1D35C61D",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "0DFE9115-3E32-4A55-AB5A-83513322FE97",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.3:*:*:*:*:*:*:*",
            "matchCriteriaId": "09BD6616-B2B9-49B1-AD20-9B13D93C8F2C",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.4:*:*:*:*:*:*:*",
            "matchCriteriaId": "35A9634E-FCF4-4C67-A463-6BA5F63DD2A5",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.5:*:*:*:*:*:*:*",
            "matchCriteriaId": "2D8CF5AA-7B41-4E98-8E7E-A399AAA510B9",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.5.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "8452BA9A-F56C-48E0-BDBA-9095AF78F521",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.5.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "B2CE3B06-353C-4623-9EF4-78814DCB0D7D",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.7:*:*:*:*:*:*:*",
            "matchCriteriaId": "FD968EA0-616D-4A22-A15D-C66918E71761",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.7.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "BE45FF20-1E52-46B6-9B38-07E5A6D6FD6D",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.7.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "249F9108-758A-4118-94C1-BAC747AF45ED",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "DFA94312-376E-4785-888F-3C07612E1DF7",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.0.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "29E73FBF-2579-4660-AFFA-7F9607004226",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "87FAAFFB-0589-441B-8289-8B8A6E18F705",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.1.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "73B92119-793D-4A43-A056-24DB6826E759",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "093A0BC2-037C-463F-AFC5-EF11C2954EAD",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.2.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "C4F434FC-CAA4-4DBB-8094-C4ECC28B31E7",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.3:*:*:*:*:*:*:*",
            "matchCriteriaId": "68C70BB3-33B3-4E7E-99D5-FF76D4ED96AE",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.4:*:*:*:*:*:*:*",
            "matchCriteriaId": "B881B8DF-A96D-4B64-B98A-71F0D3388641",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.5:*:*:*:*:*:*:*",
            "matchCriteriaId": "F6A97625-D39C-42D5-89E4-415A868A0972",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "5E4D83B4-9697-4071-AC9F-7ADC86A6B529",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.6.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "8F81F708-ACED-4E42-8CA9-116B5C4F5141",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.6.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "3C86116B-8475-40A0-A507-D4A7947F5F2C",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.6.3:*:*:*:*:*:*:*",
            "matchCriteriaId": "B98BFDB6-0884-4A5B-B2F6-102AE22665C9",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "FB5ACB9E-86AF-4EC1-9F36-A202429CD0F4",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.0.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "AD1E4527-AAE2-4DA9-AFDA-6375839F7843",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "2F0AF047-EAE9-4C77-BCEF-5CB26F84C742",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "2ED03874-4071-4382-8A46-8B3A59E601FF",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.3:*:*:*:*:*:*:*",
            "matchCriteriaId": "BF84E043-DF3C-4A95-8FDA-B0FDCD795377",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.3.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "B9498087-9642-4A86-B3EE-1513C55A86E2",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.4:*:*:*:*:*:*:*",
            "matchCriteriaId": "36C229AB-2851-48D4-815A-63AAB4462A24",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.4.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "6DA4BCFC-8237-4F5C-9863-523EE7D8619B",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.5:*:*:*:*:*:*:*",
            "matchCriteriaId": "07693A92-7D84-45A1-ACD6-D83AE41D504B",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.5.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "2C78050A-A5FB-427B-BF0D-0353B240A4FF",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.5.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "85E76AE7-12AC-4419-AE66-43730B173B4E",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.6:*:*:*:*:*:*:*",
            "matchCriteriaId": "4D803EC9-26EE-4799-A435-C782C92739CF",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.7:*:*:*:*:*:*:*",
            "matchCriteriaId": "6EEF87CD-2335-4886-A65C-4E33775AEC52",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.8:*:*:*:*:*:*:*",
            "matchCriteriaId": "953EB81A-1B53-4A57-9F59-D4A7D37E657E",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.8.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "1CB534BC-3E4D-4484-AFD0-69524B1F07F9",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.9:*:*:*:*:*:*:*",
            "matchCriteriaId": "D6514BF0-5A21-4C3A-9D9D-49677D7A2409",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.3.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "5D401072-6709-4921-8918-720F28D61E24",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.3.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "C0EA3467-4205-4C41-AF24-689330F7396B",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.3.1.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "9BE94E38-5F29-4AE1-8129-7F7582C2CC75",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.3.1.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "FEF603AD-D69B-4DD8-A7F4-6BEFD355EF29",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.4.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "D6BD1665-7824-4D98-A930-432CBDA4EAD5",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.4.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "F8056E69-22FA-4935-A576-916805D90C62",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.4.1.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "6A80BBBE-DB5E-460A-8621-6E28D2BD6E44",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.4.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "2B33F953-FEF3-4C46-A12A-2A42D8339D6E",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.4.2.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "B2C8DF03-2280-48B8-AC1E-4AAA31A36BDC",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  }
]
References

Sources include official advisories and independent security research.
Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

Related CVEs

References
