CVE-2025-20306
- Source
- https://cve.org/CVERecord?id=CVE-2025-20306
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-20306.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-20306
- Published
- 2025-08-14T17:15:40.503Z
- Modified
- 2026-03-12T17:38:53.429350Z
- Severity
-
- 4.9 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N CVSS Calculator
- Summary
- [none]
- Details
-
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an authenticated, remote attacker with Administrator-level privileges to execute arbitrary commands on the underlying operating system.
This vulnerability is due to insufficient input validation of certain HTTP request parameters that are sent to the web-based management interface. An attacker could exploit this vulnerability by authenticating to the interface and sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to execute commands as the root user on the affected device. To exploit this vulnerability, an attacker would need Administrator-level credentials.
- References
Affected packages
Git /
Database specific
unresolved_ranges
[
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.2.3"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.2.3.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.2.3.2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.2.3.3"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.2.3.4"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.2.3.5"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.2.3.6"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.2.3.7"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.2.3.8"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.2.3.9"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.2.3.10"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.2.3.11"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.2.3.12"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.2.3.13"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.2.3.14"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.2.3.15"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.2.3.16"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.2.3.17"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.2.3.18"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.4.0"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.4.0.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.4.0.2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.4.0.3"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.4.0.4"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.4.0.5"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.4.0.6"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.4.0.7"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.4.0.8"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.4.0.9"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.4.0.10"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.4.0.11"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.4.0.12"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.4.0.13"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.4.0.14"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.4.0.15"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.4.0.16"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.4.0.17"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.4.0.18"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.6.0"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.6.0.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.6.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.6.3"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.6.4"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.6.5"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.6.5.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.6.5.2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.6.7"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.6.7.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.6.7.2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.0.0"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.0.0.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.0.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.0.1.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.0.2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.0.2.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.0.3"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.0.4"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.0.5"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.0.6"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.0.6.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.0.6.2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.0.6.3"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.0.7"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.1.0"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.1.0.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.1.0.2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.1.0.3"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.2.0"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.2.0.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.2.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.2.2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.2.3"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.2.3.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.2.4"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.2.4.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.2.5"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.2.5.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.2.5.2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.2.6"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.2.7"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.2.8"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.2.8.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.2.9"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.3.0"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.3.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.3.1.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.3.1.2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.4.0"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.4.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.4.1.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.4.2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.4.2.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.4.2.2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.6.0"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "7.7.0"
}
]
}
]
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-20306.json"