CVE-2025-20362HIGH 8.6CISA KEVEPSS p99.7%

CVE-2025-20362Cisco Secure Firewall Adaptive Security (ASA) Appliance and Secure Firewall Threat Defense (FTD) Missing Authorization Vulnerability

Cisco / Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense

Description

Cisco Secure Firewall Adaptive Security (ASA) Appliance and Secure Firewall Threat Defense (FTD) Software VPN Web Server contain a missing authorization vulnerability. This vulnerability could be chained with CVE-2025-20333.

Scoring

CVSS 3.18.6 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
EPSS83.68% probability of exploitation · percentile 99.7% · 2026-06-17T12:03:21Z
Published2025-09-25
Last modified2025-11-06

CISA KEV entry

Added to KEV: 2025-09-25

Underlying weaknesses· 1

CWE-862

References

  1. https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-webvpn-YROOTUW
  2. https://sec.cloudapps.cisco.com/security/center/resources/asa_ftd_continued_attacks
  3. https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-20362

1

TypeTargetConfidenceTier
WeaknessMissing Authorizationcwe-8620%live

(incoming)1

TypeTargetConfidenceTier
KEVEntryCisco Secure Firewall Adaptive Security (ASA) Appliance and Secure Firewall Threat Defense (FTD) Missing Authorization Vulnerabilitykev-cve-2025-203620%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Cisco Secure Firewall Adaptive Security Appliance (ASA) and Secure Firewall Threat Defense (FTD) Buffer Overflow Vulnerability
CVE
CVE-2025-20133
CVE
Cisco ASA and FTD Privilege Escalation Vulnerability
CVE
CVE-2025-20363
CVE
CVE-2025-20243
CVE
CVE-2026-20069
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.