CVE-2025-20333
Published Sep 25, 2025
Last updated 8 months ago
AI description
CVE-2025-20333 is a vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software. It stems from improper validation of user-supplied input in HTTP(S) requests. An authenticated, remote attacker with valid VPN user credentials could exploit this vulnerability by sending crafted HTTP requests to an affected device. Successful exploitation could allow the attacker to execute arbitrary code as root, potentially leading to complete compromise of the device. Cisco has released software updates to address this vulnerability.
- Description
- A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software could allow an authenticated, remote attacker to execute arbitrary code on an affected device. This vulnerability is due to improper validation of user-supplied input in HTTP(S) requests. An attacker with valid VPN user credentials could exploit this vulnerability by sending crafted HTTP requests to an affected device. A successful exploit could allow the attacker to execute arbitrary code as root, possibly resulting in the complete compromise of the affected device.
- Source
- psirt@cisco.com
- NVD status
- Analyzed
- Products
- adaptive_security_appliance_software, firepower_threat_defense
CVSS 3.1
- Type
- Secondary
- Base score
- 9.9
- Impact score
- 6
- Exploitability score
- 3.1
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
- Severity
- CRITICAL
Data from CISA
- Vulnerability name
- Cisco Secure Firewall Adaptive Security Appliance (ASA) and Secure Firewall Threat Defense (FTD) Buffer Overflow Vulnerability
- Exploit added on
- Sep 25, 2025
- Exploit action due
- Sep 26, 2025
- Required action
- The KEV due date refers to the deadline by which FCEB agencies are expected to review and begin implementing the guidance outlined in Emergency Directive (ED) 25-03 (URL listed below in Notes). Agencies must follow the mitigation steps provided by CISA (URL listed below in Notes) and vendor’s instructions (URL listed below in Notes). Adhere to the applicable BOD 22-01 guidance for cloud services or discontinue use of the product if mitigations are not available.
- psirt@cisco.com
- CWE-120
- Hype score
- Not currently trending
Cisco CVE-2025-20333 python script to check for vulnerable device #cisco #vulnerability #pentest #redteam #cybersecurity https://t.co/QbFNYc5csd
@CurtisHoughton4
16 May 2026
346 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
0 Quotes
🔥 패치 이후에도 살아남는 Cisco ASA 백도어, FIRESTARTER 이번 공격은 CVE-2025-20333, CVE-2025-20362를 악용해 초기 접근을 확보한 뒤, LINE VIPER와 FIRESTARTER를 통해 네트워크 엣지 장비 자체를 장악하는 방식으로 이루어집
@CriminalIP_KR
8 May 2026
255 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
FIRESTARTER backdoor on Cisco ASA/Firepower devices persists through patches and reboots by hooking the LINA firewall process. Only complete power disconnection for 1+ minutes removes it. Key findings from CISA/NCSC joint analysis: • Targets CVE-2025-20333/20362 (patched Sept
@DFIR_Radar
7 May 2026
576 Impressions
0 Retweets
6 Likes
0 Bookmarks
1 Reply
0 Quotes
Certain Cisco Firepower devices have known vulnerabilities (CVE-2025-20333, CVE-2025-20362) that may allow unauthorized access. Keeping device software updated helps reduce exposure. Check your systems regularly. #CyberSecurity
@ADKCyber
4 May 2026
119 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Cisco Firepower の脆弱性 CVE-2025-20333/20362:パッチ未適用環境に APT がバックドアを展開 https://t.co/JrlLedxQaA この深刻な事態の原因は、Cisco Firepower デバイスの基本ソフト (FXOS) に残存する、未対応の脆弱性 CVE-2025-203
@iototsecnews
30 Apr 2026
146 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
JPCERT/CC WEEKLY REPORT 2026-04-30を公開。セキュリティ関連情報は15件。SKYSEA Client ViewおよびSKYMEC IT Managerの脆弱性情報や、「Cisco ASAおよびFTDにおける複数の脆弱性(CVE-2025-20333、CVE-2025-20362)に関する注意喚起」の更
@jpcert
30 Apr 2026
13625 Impressions
9 Retweets
15 Likes
4 Bookmarks
0 Replies
2 Quotes
統合版 JPCERT/CC | Weekly Report: JPCERT/CCが「Cisco ASAおよびFTDにおける複数の脆弱性(CVE-2025-20333、CVE-2025-20362)に関する注意喚起」を更新 https://t.co/i2zHXSyWb9 #itsec_jp
@itsec_jp
30 Apr 2026
130 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Cisco Secure Firewall ASAおよびCisco Secure FTDの脆弱性について (CVE-2025-20333等) #IPA (Apr 27) https://t.co/MCHg4FQTI0
@foxbook
29 Apr 2026
273 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Cisco ASAおよびFTDにおける複数の脆弱性(CVE-2025-20333、CVE-2025-20362)に関する注意喚起 #JPCERTCC (Apr 27) https://t.co/n3Lz5xB9XW
@foxbook
29 Apr 2026
270 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Cisco Secure FirewallとFTDという、企業ネットワーク入口の防御装置に深刻な脆弱性が出てて、CVE-2025-20333は遠隔から命令実行される方の地雷です。 ここが落ちると業務が全部止まるので、Cisco入ってる現場は今日
@mendokusai_dev
29 Apr 2026
209 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
🔥 CISA finds new 'FIRESTARTER' backdoor on a federal agency's Cisco firewall. The malware survives patches and firmware updates, allowing persistent access. Exploited CVE-2025-20333 & CVE-2025-20362. #CyberSecurity #CISA #Backdoor #Cisco https://t.co/hMKP6n78SI
@NetSecIO
28 Apr 2026
209 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Top 5 Trending CVEs: 1 - CVE-2026-20133 2 - CVE-2025-20333 3 - CVE-2026-32201 4 - CVE-2026-32210 5 - CVE-2026-25253 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W
@CVEShield
28 Apr 2026
224 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Cisco Secure Firewall ASAおよびCisco Secure FTDの脆弱性について (CVE-2025-20333等) | 情報セキュリティ | IPA 独立行政法人 情報処理推進機構 https://t.co/VbSZQCjmVW
@fyi787
28 Apr 2026
201 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
【Cisco ASAおよびFTDにおける複数の脆弱性(CVE-2025-20333、CVE-2025-20362)に関する注意喚起】 JPCERT/CCがCisco ASA/FTDの注意喚起を4月27日に更新しました。今回の要点は、CVE-2025-20333やCVE-2025-20362へのパッチ適用だけで
@01ra66it
27 Apr 2026
470 Impressions
1 Retweet
0 Likes
1 Bookmark
1 Reply
0 Quotes
#Cisco ASA の脆弱性(CVE-2025-20333)とは?パッチ後も残るリスクを徹底解説 #サイバーセキュリティ #脆弱性 https://t.co/g7e0yydpxu
@Teeeda_worker
27 Apr 2026
265 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CISA and NCSC 🇬🇧 release detailed analysis of FIRESTARTER backdoor targeting Cisco Firepower/ASA devices. APT actors exploit CVE-2025-20333/CVE-2025-20362, deploy persistent malware that survives firmware updates and reboots. Technical details: • Linux ELF backdoor hooks
@DFIR_Radar
27 Apr 2026
830 Impressions
0 Retweets
5 Likes
2 Bookmarks
2 Replies
0 Quotes
FIRESTARTER backdoor found on Cisco ASA at a US federal agency — survives firmware updates and reboots. Only a hard power cycle clears it. CISA+NCSC attribute to UAT-4356 (ArcaneDoor) via CVE-2025-20333/20362. Hunt your edge devices now. #Cybersecurity #InfoSec #APT
@infrasecserv
27 Apr 2026
262 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Top 5 Trending CVEs: 1 - CVE-2024-32002 2 - CVE-2025-20333 3 - CVE-2026-20131 4 - CVE-2026-33626 5 - CVE-2024-57726 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W
@CVEShield
27 Apr 2026
313 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
更新:Cisco Secure Firewall ASAおよびCisco Secure FTDの脆弱性について (CVE-2025-20333等) https://t.co/ZvH6Q5vL6H
@ICATalerts
27 Apr 2026
3810 Impressions
7 Retweets
11 Likes
8 Bookmarks
0 Replies
1 Quote
Cisco ASAおよびFTDの脆弱性(CVE-2025-20333、CVE-2025-20362)に関する注意喚起を更新。本脆弱性を悪用して機器内に潜伏・持続するマルウェアの情報が公表されています。修正を未適用の場合は速やかに適用を、適用
@jpcert
27 Apr 2026
4721 Impressions
9 Retweets
22 Likes
10 Bookmarks
0 Replies
0 Quotes
統合版 JPCERT/CC | 注意喚起: Cisco ASAおよびFTDにおける複数の脆弱性(CVE-2025-20333、CVE-2025-20362)に関する注意喚起 (更新) https://t.co/dQDczE7FVn #itsec_jp
@itsec_jp
27 Apr 2026
292 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Patched your Cisco ASA/FTD for CVE-2025-20333/-20362? FIRESTARTER doesn't care - backs itself up on shutdown, only dies on hard power cycle. Hunt `lina_cs` proc + /usr/bin/lina_cs + svc_samcore.log https://t.co/33YwNRNsXq
@YeethSecurity
26 Apr 2026
245 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
We’ve updated Emergency Directive 25-03 and released Malware Analysis Report: FIRESTARTER Backdoor in response to threat actors exploiting CVE-2025-20333 & CVE-2025-20362 vulnerabilities to gain persistent remote access and control over Cisco Firepower and Secure Firewall h
@FosoTweets
26 Apr 2026
212 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
CISA + NCSC: 'FIRESTARTER' backdoor on Cisco ASA/Firepower survives firmware updates and reboots — only a hard power cycle clears it. Tied to ArcaneDoor APT via CVE-2025-20333 & CVE-2025-20362. Found on a US federal network. Hunt now. #Cybersecurity #InfoSec
@infrasecserv
26 Apr 2026
194 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
BREAKING: CISA + NCSC warn of FIRESTARTER — a state-sponsored backdoor in Cisco Firepower/ASA that survives firmware updates, reboots, and patches. Threat actor: UAT-4356 (ArcaneDoor group) Entry: CVE-2025-20333 + CVE-2025-20362 https://t.co/8exhICheXm https://t.co/s6NYliX5D2
@nxtgen579255
26 Apr 2026
154 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️ CRITICAL: FIRESTARTER Backdoor APT actors deployed FIRESTARTER, a persistent Linux backdoor on Cisco Firepower and Secure Firewall devices via CVE-2025-20333 and CVE-2025-20362. The malware survives firmware pat https://t.co/4lY73Vyw5g #cybersecurity
@lenngrenm
25 Apr 2026
144 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
📌 تحذير من البوابة الخلفية "FIRESTARTER" في جدران الحماية من Cisco ASA حذرت السلطات الأمريكية والبريطانية من وجود بوابة خلفية تسمى "FIRESTARTER" يستغلها المهاجمون في جد
@MisbarSec
25 Apr 2026
226 Impressions
0 Retweets
3 Likes
0 Bookmarks
0 Replies
0 Quotes
FIRESTARTER backdoor hit a US federal agency's Cisco Firepower — survives firmware updates and reboots; only a hard power cycle removes it. CISA/NCSC link it to UAT-4356 via CVE-2025-20333/20362. Patching is not remediation. #Cybersecurity #InfoSec #APT
@infrasecserv
25 Apr 2026
200 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Top 5 Trending CVEs: 1 - CVE-2024-7399 2 - CVE-2023-50224 3 - CVE-2025-48700 4 - CVE-2025-20333 5 - CVE-2026-5281 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W
@CVEShield
25 Apr 2026
226 Impressions
0 Retweets
0 Likes
1 Bookmark
0 Replies
0 Quotes
🚨 Cisco Firepower devices are under active attack! UAT-4356 is exploiting CVE-2025-20333 & CVE-2025-20362 to deploy the FIRESTARTER backdoor. ✅ Hard reboot devices ✅ Reimage systems ✅ Apply Cisco patches ✅ Follow CISA Directive 25-03 Patch now! #CyberSecurity #
@KaliSushanth
25 Apr 2026
187 Impressions
0 Retweets
2 Likes
0 Bookmarks
1 Reply
0 Quotes
🚨 Cisco Firepower devices are under active attack! UAT-4356 is exploiting CVE-2025-20333 & CVE-2025-20362 to deploy the FIRESTARTER backdoor. ✅ Hard reboot devices ✅ Reimage systems ✅ Apply Cisco patches ✅ Follow CISA Directive 25-03 Patch now! #CyberSecurity
@KaliSushanth
25 Apr 2026
156 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
ArcaneDoor threat actor develops new persistence mechanism for Cisco ASA/FTD that survives firmware upgrades to patched versions. CVE-2025-20333 (CVSS 9.9) actively exploited and on CISA KEV. #DFIR_Radar https://t.co/ZzJr80HYyt
@DFIR_Radar
25 Apr 2026
231 Impressions
0 Retweets
1 Like
0 Bookmarks
1 Reply
0 Quotes
CISA reveals FIRESTARTER backdoor infected federal Cisco ASA device in Sept 2025, persisting through security patches. Malware survives firmware updates by hooking into LINA engine and maintaining persistence across reboots. Key technical details: • Exploits CVE-2025-20333 htt
@DFIR_Radar
25 Apr 2026
218 Impressions
0 Retweets
1 Like
0 Bookmarks
1 Reply
0 Quotes
Attackers exploiting CVE-2025-20333 and CVE-2025-20362 in Cisco firewalls are deploying Firestarter malware that survives firmware updates and patches. The backdoor integrates into core ASA processes and enables lateral movement after initial compromise. Runtime segmentation
@aviatrixtrc
25 Apr 2026
173 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
TRC analysis shows attackers exploited CVE-2025-20333 to deploy FIRESTARTER backdoor on federal agency's Cisco Firepower device. The malware persists through firmware updates and reboots, enabling continued lateral movement even after patching. Runtime segmentation helps contain
@aviatrixtrc
24 Apr 2026
155 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
NEW THREAT INTEL: Firestarter on Cisco ASA/FTD - UAT-4356/ArcaneDoor implant survives firmware updates via CVE-2025-20333 and CVE-2025-20362. 9 detections, 28 IOCs. https://t.co/H7E4Hf2ksy #ThreatIntel #CyberSecurity #Cisco #ArcaneDoor https://t.co/YChxfZxyxB
@threadlinqs
24 Apr 2026
170 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Firestarter malware persists on Cisco Firepower and Secure Firewall devices running ASA/FTD, bypassing patches and reboots. Linked to UAT-4356, it exploits CVE-2025-20333 & CVE-2025-20362 via WebVPN. #CiscoFirepower #UK #Backdoor https://t.co/bvQpku3keX
@TweetThreatNews
24 Apr 2026
259 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
FIRESTARTER backdoor compromised a U.S. federal civilian agency's Cisco Firepower device in September 2025. The implant provides remote access and control, deployed by APT actor UAT4356 (aka Storm-1849). It chains two vulnerabilities: CVE-2025-20333 (CVSS 9.9), an improper
@SecureChap
24 Apr 2026
139 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
UAT-4356 (China-nexus) exploiting Cisco FXOS CVE-2025-20333: web mgmt RCE (unauth) CVE-2025-20362: CLI auth bypass Chain: bypass → RCE → firmware implant (REPTILE/SEASPY) Targets: enterprise/gov perimeter devices #ThreatIntel #APT #CVE #UAT4356
@NoctisIntel
24 Apr 2026
181 Impressions
0 Retweets
1 Like
0 Bookmarks
1 Reply
0 Quotes
TRC analysis shows the Firestarter malware exploits CVE-2025-20333 and CVE-2025-20362 to gain root access on Cisco ASA/FTD devices, then establishes persistence that survives firmware updates. Compromised network infrastructure enables lateral movement across critical
@aviatrixtrc
24 Apr 2026
165 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
csirt_it: ‼️ #FIRESTARTER: disponibili dettagli inerenti allo sfruttamenti delle vulnerabilità CVE-2025-20333 e CVE-2025-20362 relative a prodotti #Cisco e utilizzate per istanziare #Backdoor Rischio: 🔴 🔗https://t.co/XPOvAL9wFs ⚠️Mitigazioni dispo… https://t
@Vulcanux_
24 Apr 2026
173 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
‼️ #FIRESTARTER: disponibili dettagli inerenti allo sfruttamenti delle vulnerabilità CVE-2025-20333 e CVE-2025-20362 relative a prodotti #Cisco e utilizzate per istanziare #Backdoor Rischio: 🔴 🔗https://t.co/LiUWKmpf9o ⚠️Mitigazioni disponibili https://t.co/Y6W
@csirt_it
24 Apr 2026
270 Impressions
1 Retweet
2 Likes
0 Bookmarks
0 Replies
0 Quotes
Cisco Talos uncovers the FIRESTARTER backdoor in Arcane Door's latest attack on Firepower devices. Patch CVE-2025-20333 now to stop state-sponsored espionage. #CiscoSecurity #ArcaneDoor #Firestarter #InfoSec #CyberSecurity #APT #Firepower #PatchNow https://t.co/RkAqL9DcwN https:
@the_yellow_fall
24 Apr 2026
670 Impressions
9 Retweets
11 Likes
2 Bookmarks
1 Reply
0 Quotes
UAT-4356’s FIRESTARTER campaign shows why patching edge devices is no longer enough by itself. A new whitepaper breaks down the CVE-2025-20333 / CVE-2025-20362 attack chain, persistence behavior, and defender-focused validation guidance. https://t.co/CApr4Y7N3v
@ninp0
23 Apr 2026
170 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
UAT-4356 exploits FXOS n-day vulnerabilities CVE-2025-20333 and CVE-2025-20362 in Cisco Firepower devices to deploy the custom backdoor FIRESTARTER, enabling shellcode injection and persistent access. #FIRESTARTER #CiscoFXOS #USA https://t.co/gDbjr4icU5
@TweetThreatNews
23 Apr 2026
292 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
APT actors are exploiting Cisco Firepower and Secure Firewall flaws (CVE-2025-20333, CVE-2025-20362) for remote access—core gear shielding enterprise networks. CISA/NCSC-UK report details persistence tricks and fixes. When firewalls become backdoors, self-reliant defenses start
@LifeSufficient_
23 Apr 2026
180 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
State-sponsored UAT-4356 exploits n-day Cisco Firepower vulnerabilities to deploy FIRESTARTER backdoor. Campaign leverages transient persistence mechanism that survives graceful reboots but removed by hard power cycles. Key technical details: • Exploits CVE-2025-20333 and http
@DFIR_Radar
23 Apr 2026
247 Impressions
0 Retweets
1 Like
0 Bookmarks
1 Reply
0 Quotes
Just Released: Malware Analysis Report: FIRESTARTER Backdoor on threat actors exploiting CVE-2025-20333 & CVE-2025-20362 vulnerabilities to gain persistent remote access & control over Cisco Firepower & Secure Firewall products. Learn more 👉 https://t.co/CcpDLqsXrG
@CISACyber
23 Apr 2026
5622 Impressions
16 Retweets
50 Likes
14 Bookmarks
4 Replies
2 Quotes
TRC analysis shows Interlock ransomware exploited CVE-2025-20333 to compromise Cisco firewalls, then moved laterally across enterprise networks. The attackers leveraged network infrastructure as an attack pivot point, demonstrating how perimeter compromises enable internal
@aviatrixtrc
20 Mar 2026
136 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🛡️ CISA alerta que miles de Cisco ASA y Firepower siguen vulnerables a los CVE-2025-20362 y CVE-2025-20333, incluso en organizaciones que creían haber parcheado. Los fallos permiten control total del dispositivo. #Metaprotec recomienda: verificar parches y reforzar monitori
@MetaProtec
5 Dec 2025
107 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*",
"matchCriteriaId": "775B3D5F-25D3-4B1C-9BA2-985263A6CE83",
"versionEndExcluding": "9.12.4.72",
"versionStartIncluding": "9.12",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*",
"matchCriteriaId": "9AD381CE-3B2E-4633-AA43-7A82BA7D39CF",
"versionEndExcluding": "9.14.4.28",
"versionStartIncluding": "9.14",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*",
"matchCriteriaId": "B8D232A4-8AB6-4B7B-A603-4F31B8BAE40C",
"versionEndExcluding": "9.16.4.85",
"versionStartIncluding": "9.16",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*",
"matchCriteriaId": "DA289FE8-F22B-4709-8BD9-5C3774922491",
"versionEndExcluding": "9.17.1.45",
"versionStartIncluding": "9.17.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*",
"matchCriteriaId": "80858CAB-E722-4B07-B7FB-56B31D49DD56",
"versionEndExcluding": "9.18.4.47",
"versionStartIncluding": "9.18",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*",
"matchCriteriaId": "FE2128F5-BE28-4EE8-ACA7-E4691BF0058A",
"versionEndExcluding": "9.19.1.37",
"versionStartIncluding": "9.19",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E1B37E40-EB7C-4587-9AA8-9C47BA04AE0D",
"versionEndExcluding": "9.20.3.7",
"versionStartIncluding": "9.20",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*",
"matchCriteriaId": "6526ADF9-BA83-451B-8331-B15877954F77",
"versionEndExcluding": "9.22.1.3",
"versionStartIncluding": "9.22",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
"matchCriteriaId": "DAC10ECF-61D6-495F-9377-FE4DF6CF02FC",
"versionEndExcluding": "7.0.8.1",
"versionStartIncluding": "7.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
"matchCriteriaId": "C3A6C96B-2873-4F94-B136-E5F6436DE16F",
"versionEndExcluding": "7.2.9",
"versionStartIncluding": "7.1.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
"matchCriteriaId": "C63DAB4E-72E6-4016-B665-9957A69F49F1",
"versionEndExcluding": "7.4.2.4",
"versionStartIncluding": "7.3.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:7.6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "76B73F03-93B6-48C3-BF97-FEAF26895A2D",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
]