CVE-2025-20219
BaseFortify
Publication date: 2025-08-14
Last updated on: 2025-08-15
Assigner: Cisco Systems, Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| cisco | secure_firewall_threat_defense | * |
| cisco | secure_firewall_adaptive_security_appliance | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-284 | The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in Cisco Secure Firewall ASA and FTD Software where access control rules for loopback interfaces are not properly enforced. An unauthenticated remote attacker can exploit this by sending traffic to a loopback interface that should have been blocked, effectively bypassing the configured access control rules.
How can this vulnerability impact me? :
The impact of this vulnerability is that an attacker could bypass access control rules and send unauthorized traffic to a loopback interface on the affected device. This could potentially allow malicious traffic to reach internal components or services that are normally protected, leading to information exposure or other security issues.