CVE-2025-20362
Published Sep 25, 2025
Last updated 7 months ago
AI description
CVE-2025-20362 is a vulnerability found in the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software. It could allow an unauthenticated, remote attacker to access restricted URL endpoints that should normally require authentication. This vulnerability is due to improper validation of user-supplied input in HTTP(S) requests. An attacker could exploit it by sending crafted HTTP requests to a targeted web server, potentially gaining access to restricted URLs without proper authentication. Cisco has released software updates to address this vulnerability.
- Description
- Update: On November 5, 2025, Cisco became aware of a new attack variant against devices running Cisco Secure ASA Software or Cisco Secure FTD Software releases that are affected by CVE-2025-20333 and CVE-2025-20362. This attack can cause unpatched devices to unexpectedly reload, leading to denial of service (DoS) conditions. Cisco strongly recommends that all customers upgrade to the fixed software releases that are listed in the Fixed Software ["#fs"] section of this advisory. A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to access restricted URL endpoints that are related to remote access VPN that should otherwise be inaccessible without authentication. This vulnerability is due to improper validation of user-supplied input in HTTP(S) requests. An attacker could exploit this vulnerability by sending crafted HTTP requests to a targeted web server on a device. A successful exploit could allow the attacker to access a restricted URL without authentication.
- Source
- psirt@cisco.com
- NVD status
- Analyzed
- Products
- adaptive_security_appliance_software, firepower_threat_defense
CVSS 3.1
- Type
- Primary
- Base score
- 8.6
- Impact score
- 4.7
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
- Severity
- HIGH
Data from CISA
- Vulnerability name
- Cisco Secure Firewall Adaptive Security (ASA) Appliance and Secure Firewall Threat Defense (FTD) Missing Authorization Vulnerability
- Exploit added on
- Sep 25, 2025
- Exploit action due
- Sep 26, 2025
- Required action
- The KEV due date refers to the deadline by which FCEB agencies are expected to review and begin implementing the guidance outlined in Emergency Directive (ED) 25-03 (URL listed below in Notes). Agencies must follow the mitigation steps provided by CISA (URL listed below in Notes) and vendor’s instructions (URL listed below in Notes). Adhere to the applicable BOD 22-01 guidance for cloud services or discontinue use of the product if mitigations are not available.
- psirt@cisco.com
- CWE-862
- Hype score
- Not currently trending
Python vulnerability scanner for Cisco CVE-2025-20362 #Cisco #vulnerability #redteam #pentest #cybersecurity https://t.co/b5r7OcHXiy
@CurtisHoughton4
16 May 2026
322 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 In this week’s newsletter, we cover CVE-2025-20362, a Cisco ASA & FTD VPN authentication bypass still actively targeting internet-facing firewalls. We break down how attackers abuse exposed VPN infrastructure and what defenders should do next. Read the full analysis a
@Crowd_Security
11 May 2026
501 Impressions
0 Retweets
3 Likes
0 Bookmarks
1 Reply
0 Quotes
🔥 패치 이후에도 살아남는 Cisco ASA 백도어, FIRESTARTER 이번 공격은 CVE-2025-20333, CVE-2025-20362를 악용해 초기 접근을 확보한 뒤, LINE VIPER와 FIRESTARTER를 통해 네트워크 엣지 장비 자체를 장악하는 방식으로 이루어집
@CriminalIP_KR
8 May 2026
255 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Certain Cisco Firepower devices have known vulnerabilities (CVE-2025-20333, CVE-2025-20362) that may allow unauthorized access. Keeping device software updated helps reduce exposure. Check your systems regularly. #CyberSecurity
@ADKCyber
4 May 2026
119 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Cisco Firepower の脆弱性 CVE-2025-20333/20362:パッチ未適用環境に APT がバックドアを展開 https://t.co/JrlLedxQaA この深刻な事態の原因は、Cisco Firepower デバイスの基本ソフト (FXOS) に残存する、未対応の脆弱性 CVE-2025-203
@iototsecnews
30 Apr 2026
146 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
JPCERT/CC WEEKLY REPORT 2026-04-30を公開。セキュリティ関連情報は15件。SKYSEA Client ViewおよびSKYMEC IT Managerの脆弱性情報や、「Cisco ASAおよびFTDにおける複数の脆弱性(CVE-2025-20333、CVE-2025-20362)に関する注意喚起」の更
@jpcert
30 Apr 2026
13625 Impressions
9 Retweets
15 Likes
4 Bookmarks
0 Replies
2 Quotes
統合版 JPCERT/CC | Weekly Report: JPCERT/CCが「Cisco ASAおよびFTDにおける複数の脆弱性(CVE-2025-20333、CVE-2025-20362)に関する注意喚起」を更新 https://t.co/i2zHXSyWb9 #itsec_jp
@itsec_jp
30 Apr 2026
130 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Cisco ASAおよびFTDにおける複数の脆弱性(CVE-2025-20333、CVE-2025-20362)に関する注意喚起 #JPCERTCC (Apr 27) https://t.co/n3Lz5xB9XW
@foxbook
29 Apr 2026
270 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🔥 CISA finds new 'FIRESTARTER' backdoor on a federal agency's Cisco firewall. The malware survives patches and firmware updates, allowing persistent access. Exploited CVE-2025-20333 & CVE-2025-20362. #CyberSecurity #CISA #Backdoor #Cisco https://t.co/hMKP6n78SI
@NetSecIO
28 Apr 2026
209 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
【Cisco ASAおよびFTDにおける複数の脆弱性(CVE-2025-20333、CVE-2025-20362)に関する注意喚起】 JPCERT/CCがCisco ASA/FTDの注意喚起を4月27日に更新しました。今回の要点は、CVE-2025-20333やCVE-2025-20362へのパッチ適用だけで
@01ra66it
27 Apr 2026
470 Impressions
1 Retweet
0 Likes
1 Bookmark
1 Reply
0 Quotes
CISA and NCSC 🇬🇧 release detailed analysis of FIRESTARTER backdoor targeting Cisco Firepower/ASA devices. APT actors exploit CVE-2025-20333/CVE-2025-20362, deploy persistent malware that survives firmware updates and reboots. Technical details: • Linux ELF backdoor hooks
@DFIR_Radar
27 Apr 2026
830 Impressions
0 Retweets
5 Likes
2 Bookmarks
2 Replies
0 Quotes
Cisco ASAおよびFTDの脆弱性(CVE-2025-20333、CVE-2025-20362)に関する注意喚起を更新。本脆弱性を悪用して機器内に潜伏・持続するマルウェアの情報が公表されています。修正を未適用の場合は速やかに適用を、適用
@jpcert
27 Apr 2026
4721 Impressions
9 Retweets
22 Likes
10 Bookmarks
0 Replies
0 Quotes
統合版 JPCERT/CC | 注意喚起: Cisco ASAおよびFTDにおける複数の脆弱性(CVE-2025-20333、CVE-2025-20362)に関する注意喚起 (更新) https://t.co/dQDczE7FVn #itsec_jp
@itsec_jp
27 Apr 2026
292 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
We’ve updated Emergency Directive 25-03 and released Malware Analysis Report: FIRESTARTER Backdoor in response to threat actors exploiting CVE-2025-20333 & CVE-2025-20362 vulnerabilities to gain persistent remote access and control over Cisco Firepower and Secure Firewall h
@FosoTweets
26 Apr 2026
212 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
CISA + NCSC: 'FIRESTARTER' backdoor on Cisco ASA/Firepower survives firmware updates and reboots — only a hard power cycle clears it. Tied to ArcaneDoor APT via CVE-2025-20333 & CVE-2025-20362. Found on a US federal network. Hunt now. #Cybersecurity #InfoSec
@infrasecserv
26 Apr 2026
194 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
BREAKING: CISA + NCSC warn of FIRESTARTER — a state-sponsored backdoor in Cisco Firepower/ASA that survives firmware updates, reboots, and patches. Threat actor: UAT-4356 (ArcaneDoor group) Entry: CVE-2025-20333 + CVE-2025-20362 https://t.co/8exhICheXm https://t.co/s6NYliX5D2
@nxtgen579255
26 Apr 2026
154 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️ CRITICAL: FIRESTARTER Backdoor APT actors deployed FIRESTARTER, a persistent Linux backdoor on Cisco Firepower and Secure Firewall devices via CVE-2025-20333 and CVE-2025-20362. The malware survives firmware pat https://t.co/4lY73Vyw5g #cybersecurity
@lenngrenm
25 Apr 2026
144 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
📌 تحذير من البوابة الخلفية "FIRESTARTER" في جدران الحماية من Cisco ASA حذرت السلطات الأمريكية والبريطانية من وجود بوابة خلفية تسمى "FIRESTARTER" يستغلها المهاجمون في جد
@MisbarSec
25 Apr 2026
226 Impressions
0 Retweets
3 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Cisco Firepower devices are under active attack! UAT-4356 is exploiting CVE-2025-20333 & CVE-2025-20362 to deploy the FIRESTARTER backdoor. ✅ Hard reboot devices ✅ Reimage systems ✅ Apply Cisco patches ✅ Follow CISA Directive 25-03 Patch now! #CyberSecurity #
@KaliSushanth
25 Apr 2026
187 Impressions
0 Retweets
2 Likes
0 Bookmarks
1 Reply
0 Quotes
🚨 Cisco Firepower devices are under active attack! UAT-4356 is exploiting CVE-2025-20333 & CVE-2025-20362 to deploy the FIRESTARTER backdoor. ✅ Hard reboot devices ✅ Reimage systems ✅ Apply Cisco patches ✅ Follow CISA Directive 25-03 Patch now! #CyberSecurity
@KaliSushanth
25 Apr 2026
156 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Attackers exploiting CVE-2025-20333 and CVE-2025-20362 in Cisco firewalls are deploying Firestarter malware that survives firmware updates and patches. The backdoor integrates into core ASA processes and enables lateral movement after initial compromise. Runtime segmentation
@aviatrixtrc
25 Apr 2026
173 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
NEW THREAT INTEL: Firestarter on Cisco ASA/FTD - UAT-4356/ArcaneDoor implant survives firmware updates via CVE-2025-20333 and CVE-2025-20362. 9 detections, 28 IOCs. https://t.co/H7E4Hf2ksy #ThreatIntel #CyberSecurity #Cisco #ArcaneDoor https://t.co/YChxfZxyxB
@threadlinqs
24 Apr 2026
170 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Firestarter malware persists on Cisco Firepower and Secure Firewall devices running ASA/FTD, bypassing patches and reboots. Linked to UAT-4356, it exploits CVE-2025-20333 & CVE-2025-20362 via WebVPN. #CiscoFirepower #UK #Backdoor https://t.co/bvQpku3keX
@TweetThreatNews
24 Apr 2026
259 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
UAT-4356 (China-nexus) exploiting Cisco FXOS CVE-2025-20333: web mgmt RCE (unauth) CVE-2025-20362: CLI auth bypass Chain: bypass → RCE → firmware implant (REPTILE/SEASPY) Targets: enterprise/gov perimeter devices #ThreatIntel #APT #CVE #UAT4356
@NoctisIntel
24 Apr 2026
181 Impressions
0 Retweets
1 Like
0 Bookmarks
1 Reply
0 Quotes
TRC analysis shows the Firestarter malware exploits CVE-2025-20333 and CVE-2025-20362 to gain root access on Cisco ASA/FTD devices, then establishes persistence that survives firmware updates. Compromised network infrastructure enables lateral movement across critical
@aviatrixtrc
24 Apr 2026
165 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
csirt_it: ‼️ #FIRESTARTER: disponibili dettagli inerenti allo sfruttamenti delle vulnerabilità CVE-2025-20333 e CVE-2025-20362 relative a prodotti #Cisco e utilizzate per istanziare #Backdoor Rischio: 🔴 🔗https://t.co/XPOvAL9wFs ⚠️Mitigazioni dispo… https://t
@Vulcanux_
24 Apr 2026
173 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
‼️ #FIRESTARTER: disponibili dettagli inerenti allo sfruttamenti delle vulnerabilità CVE-2025-20333 e CVE-2025-20362 relative a prodotti #Cisco e utilizzate per istanziare #Backdoor Rischio: 🔴 🔗https://t.co/LiUWKmpf9o ⚠️Mitigazioni disponibili https://t.co/Y6W
@csirt_it
24 Apr 2026
270 Impressions
1 Retweet
2 Likes
0 Bookmarks
0 Replies
0 Quotes
米国政府機関への侵入でシスコ社機器に使用されたマルウェアFIRESTARTERについて。米国サイバーセキュリティ・社会基盤安全保障庁(CISA)報告。Cisco ASAのCVE-2025-30333及びCVE-2025-20362について警告した際に発見。FIRE
@__kokumoto
23 Apr 2026
994 Impressions
1 Retweet
7 Likes
4 Bookmarks
0 Replies
0 Quotes
UAT-4356’s FIRESTARTER campaign shows why patching edge devices is no longer enough by itself. A new whitepaper breaks down the CVE-2025-20333 / CVE-2025-20362 attack chain, persistence behavior, and defender-focused validation guidance. https://t.co/CApr4Y7N3v
@ninp0
23 Apr 2026
170 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
UAT-4356 exploits FXOS n-day vulnerabilities CVE-2025-20333 and CVE-2025-20362 in Cisco Firepower devices to deploy the custom backdoor FIRESTARTER, enabling shellcode injection and persistent access. #FIRESTARTER #CiscoFXOS #USA https://t.co/gDbjr4icU5
@TweetThreatNews
23 Apr 2026
292 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
APT actors are exploiting Cisco Firepower and Secure Firewall flaws (CVE-2025-20333, CVE-2025-20362) for remote access—core gear shielding enterprise networks. CISA/NCSC-UK report details persistence tricks and fixes. When firewalls become backdoors, self-reliant defenses start
@LifeSufficient_
23 Apr 2026
180 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Just Released: Malware Analysis Report: FIRESTARTER Backdoor on threat actors exploiting CVE-2025-20333 & CVE-2025-20362 vulnerabilities to gain persistent remote access & control over Cisco Firepower & Secure Firewall products. Learn more 👉 https://t.co/CcpDLqsXrG
@CISACyber
23 Apr 2026
5622 Impressions
16 Retweets
50 Likes
14 Bookmarks
4 Replies
2 Quotes
🛡️ CISA alerta que miles de Cisco ASA y Firepower siguen vulnerables a los CVE-2025-20362 y CVE-2025-20333, incluso en organizaciones que creían haber parcheado. Los fallos permiten control total del dispositivo. #Metaprotec recomienda: verificar parches y reforzar monitori
@MetaProtec
5 Dec 2025
107 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-20362: Manuel Exploitation Rehberi (URL Tabanlı)CVE-2025-20362, Cisco Secure Firewall Adaptive Security Appliance (ASA) ve Threat Defense (FTD) yazılımlarındaki VPN web sunucusunu etkileyen bir kimlik doğrulama atlama (authentication bypass) zafiyetidir. CVSS skoru
@haydar_beklemez
3 Dec 2025
88 Impressions
1 Retweet
0 Likes
0 Bookmarks
1 Reply
0 Quotes
🚨 Cisco Firewall admins: New attack wave exploiting CVE-2025-20333 & CVE-2025-20362—causes DoS reloads, delivers malware like RayInitiator. Quick fix: Update ASA/FTD software per Cisco advisory. Monitor for reload spikes. Unpatched edges = open doors. Lock it down toda
@AsensoDerrick3
29 Nov 2025
90 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CISA varuje: dvě kritické chyby v Cisco ASA/FTD (CVE-2025-20333 a CVE-2025-20362), aktivní exploitace. ✅ Doporučení: identifikujte zařízení, aplikujte patch, proveďte kontrolu. https://t.co/PJsovjARkw
@platforma_kybez
28 Nov 2025
53 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CISA Updates Guidance on Patching Cisco Devices Targeted in China-Linked Attacks https://t.co/S5zvOVX3Ld The two bugs, tracked as CVE-2025-20333 and CVE-2025-20362, were discovered in May, after being exploited as zero-days in attacks against government organizations.
@vjpastor
15 Nov 2025
38 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Vulnerabilities in Cisco ASA and ISE battling it out to see which exploit is worse—and enterprises should be worried. In this episode of IT SPARC Cast - CVE of the Week, we cover: • CVE-2025-20333 & CVE-2025-20362 impacting Cisco ASA and Secure Firewall (FTD) • Authent
@john_video
15 Nov 2025
79 Impressions
1 Retweet
2 Likes
0 Bookmarks
0 Replies
0 Quotes
**URGENT:** CISA warns of active ArcaneDoor attacks exploiting Cisco ASA & Firepower flaws (CVE-2025-20362, CVE-2025-20333). Patch NOW! #Cyb... 🔒 Privacy is a right. Ghost Coin delivers true anonymity. https://t.co/4fb8OcvJil #Ghost #Privacy $GHOST
@ghostednews
15 Nov 2025
17 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
**URGENT:** CISA orders patches NOW! Critical flaws (CVE-2025-20362, CVE-2025-20333) in Cisco ASA & Firepower exploited by ArcaneDoor. Verif... 🔒 Privacy is a right. Ghost Coin delivers true anonymity. https://t.co/4fb8OcvJil #Ghost #Privacy $GHOST
@ghostednews
15 Nov 2025
45 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
سيسكو تحـ ـذر من هجـ ـوم جديد يستهدف جدران الحماية عبر الثـ ـغرتين CVE-2025-20333 وCVE-2025-20362 التفاصيل.. https://t.co/aMmuiQmtiu #مركز_الأمن_السيبراني_للابحاث_والدراسات https://t.
@ccforrs
14 Nov 2025
38 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CISA緊急警告: Cisco ASA/FirepowerのCVE-2025-20362/20333を即時適用 https://t.co/rPggWhYNsd #Security #セキュリティー #ニュース
@SecureShield_
14 Nov 2025
1 Impression
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
In a VPN cyberattack that sent shockwaves through the country and beyond, Cisco recently announced three high-severity vulnerabilities, including CVE-2025-20333, CVE-2025-20362, and CVE-2025-20363.
@ShieldSure
13 Nov 2025
21 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
CISA alerts U.S. federal agencies to urgently patch critical Cisco ASA and Firepower flaws (CVE-2025-20362, CVE-2025-20333) exploited by the ArcaneDoor campaign, risking remote code execution and full device takeover. #CiscoFlaws #ArcaneDoor #USA https://t.co/zf4oJLqtw7
@TweetThreatNews
13 Nov 2025
97 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Cisco DoS attacks hit firewalls hard—CVE-2025-20362/20333 force reboots, downing networks. From espionage to disruption, 34K devices vulnerable per Shadowserver. Read our guide on patching, zero-trust, & hunting Line Dancer malware. Secure your edge! https://t.co/j4K3UbBFz1
@blackbeltsecure
12 Nov 2025
63 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Ce qu’on ne vous dit pas ailleurs 👇 📰 ** Cisco - vulnérabilité cve-2025-20362 : informations du portail cert santé ** Un point essentiel pour comprendre le sujet sans le bruit. 👉 Découvrir les sources et le contexte : https://t.co/EdayaOflLV #Art... https://
@artia13200
11 Nov 2025
29 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
برای فایروال های ASA و FTD مربوط به سیسکو، دو آسیب پذیری با کد شناسایی CVE-2025-20362 و CVE-2025-20333 منتشر شده بود ، به تازگی اکسپلویت این دو آسیب پذیری نیز منتشر شده است.
@AmirHossein_sec
10 Nov 2025
75 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
New #Cisco Firewall Exploits Detected! Attackers are exploiting CVE-2025-20333 & CVE-2025-20362 to crash or control unpatched ASA/FTD devices 👉 https://t.co/Y84XwplbLM #CyberSecurity #Vulert #Cisco #CVE #ZeroDay #FirewallSecurity
@vulert_official
10 Nov 2025
1 Impression
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Cisco Warns of New Firewall Attack Exploiting CVE-2025-20333 and CVE-2025-20362 https://t.co/UoPeoeAC38 via @TheHackersNews
@DCICyberSecNews
10 Nov 2025
12 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
シスコ、9月に悪用公表のゼロデイが新たにDoS攻撃で悪用されていると警告:CVE-2025-20362、CVE-2025-20333 | Codebook|Security News https://t.co/FMeNUOw1VF
@ohhara_shiojiri
10 Nov 2025
38 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*",
"matchCriteriaId": "775B3D5F-25D3-4B1C-9BA2-985263A6CE83",
"versionEndExcluding": "9.12.4.72",
"versionStartIncluding": "9.12",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*",
"matchCriteriaId": "9AD381CE-3B2E-4633-AA43-7A82BA7D39CF",
"versionEndExcluding": "9.14.4.28",
"versionStartIncluding": "9.14",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*",
"matchCriteriaId": "B8D232A4-8AB6-4B7B-A603-4F31B8BAE40C",
"versionEndExcluding": "9.16.4.85",
"versionStartIncluding": "9.16",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*",
"matchCriteriaId": "452A6BDC-8213-4ADD-AAC9-87466D95F188",
"versionEndExcluding": "9.18.4.67",
"versionStartIncluding": "9.17.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*",
"matchCriteriaId": "2ED8DF6E-39F6-427A-A0FF-98F6435052DD",
"versionEndExcluding": "9.20.4.10",
"versionStartIncluding": "9.19",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*",
"matchCriteriaId": "CD2F2F11-458B-4DFB-91AB-9F0949959769",
"versionEndExcluding": "9.22.2.14",
"versionStartIncluding": "9.22",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*",
"matchCriteriaId": "4BDB9C75-6398-4282-B913-3262D8080471",
"versionEndExcluding": "9.23.1.19",
"versionStartIncluding": "9.23",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
"matchCriteriaId": "DAC10ECF-61D6-495F-9377-FE4DF6CF02FC",
"versionEndExcluding": "7.0.8.1",
"versionStartIncluding": "7.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
"matchCriteriaId": "C7FC7AAC-DAFB-4595-B2F2-FB3F7C285A3B",
"versionEndExcluding": "7.2.10.2",
"versionStartIncluding": "7.1.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
"matchCriteriaId": "C63DAB4E-72E6-4016-B665-9957A69F49F1",
"versionEndExcluding": "7.4.2.4",
"versionStartIncluding": "7.3.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
"matchCriteriaId": "D5974899-1958-4FB5-AF88-F464258154E7",
"versionEndExcluding": "7.6.2.1",
"versionStartIncluding": "7.6.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*",
"matchCriteriaId": "3C7EBB77-0701-4D43-BB34-4039E98BB3A9",
"versionEndExcluding": "7.7.10.1",
"versionStartIncluding": "7.7.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
]