Multiple Cisco Products Vulnerabilities

Severity

High

Analysis Summary

CVE-2025-20333 CVSS:9.9

Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Secure Firewall Threat Defense (FTD) Software could allow a remote authenticated attacker to execute arbitrary code as root on the system, caused by improper validation of user-supplied input in HTTP(S) requests.

CVE-2025-20334 CVSS:8.8

Cisco IOS XE Software could allow a remote attacker to execute arbitrary commands on the system, caused by insufficient input validation.

CVE-2025-20311 CVSS:7.4

Cisco IOS XE Software is vulnerable to a denial of service, caused by improper handling of crafted Ethernet frames.

Impact

Code Execution
Gain Access
Denial of Service

Indicators of Compromise

CVE

CVE-2025-20333
CVE-2025-20334
CVE-2025-20311

Affected Vendors

Cisco

Affected Products

Cisco IOS XE Software
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software
Cisco Secure Firewall Threat Defense (FTD) Software

Remediation

Refer to Cisco Security Advisory for patch, upgrade, or suggested workaround information.

CVE-2025-20333

CVE-2025-20334

CVE-2025-20311

CVE-2025-11756 – Google Chrome Vulnerability

Multiple Adobe Substance Vulnerabilities

Multiple Cisco Products Vulnerabilities

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan