CVE-2025-20301
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-08-14
Last updated on: 2025-08-25
Assigner: Cisco Systems, Inc.
Description
Description
A vulnerability in the web-based management interface of Cisco Secure FMC Software could allow an authenticated, low-privileged, remote attacker to access troubleshoot files for a different domain.
This vulnerability is due to missing authorization checks. An attacker could exploit this vulnerability by directly accessing a troubleshoot file for a different domain that is managed on the same Cisco Secure FMC instance. A successful exploit could allow the attacker to retrieve a troubleshoot file for a different domain, which could allow the attacker to access sensitive information contained in the troubleshoot file.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| cisco | secure_firewall_management_center | 6.2.3 |
| cisco | secure_firewall_management_center | 6.2.3.1 |
| cisco | secure_firewall_management_center | 6.2.3.2 |
| cisco | secure_firewall_management_center | 6.2.3.3 |
| cisco | secure_firewall_management_center | 6.2.3.4 |
| cisco | secure_firewall_management_center | 6.2.3.5 |
| cisco | secure_firewall_management_center | 6.2.3.6 |
| cisco | secure_firewall_management_center | 6.2.3.7 |
| cisco | secure_firewall_management_center | 6.2.3.8 |
| cisco | secure_firewall_management_center | 6.2.3.9 |
| cisco | secure_firewall_management_center | 6.2.3.10 |
| cisco | secure_firewall_management_center | 6.2.3.11 |
| cisco | secure_firewall_management_center | 6.2.3.12 |
| cisco | secure_firewall_management_center | 6.2.3.13 |
| cisco | secure_firewall_management_center | 6.2.3.14 |
| cisco | secure_firewall_management_center | 6.2.3.15 |
| cisco | secure_firewall_management_center | 6.2.3.16 |
| cisco | secure_firewall_management_center | 6.2.3.17 |
| cisco | secure_firewall_management_center | 6.2.3.18 |
| cisco | secure_firewall_management_center | 6.4.0 |
| cisco | secure_firewall_management_center | 6.4.0.1 |
| cisco | secure_firewall_management_center | 6.4.0.2 |
| cisco | secure_firewall_management_center | 6.4.0.3 |
| cisco | secure_firewall_management_center | 6.4.0.4 |
| cisco | secure_firewall_management_center | 6.4.0.5 |
| cisco | secure_firewall_management_center | 6.4.0.6 |
| cisco | secure_firewall_management_center | 6.4.0.7 |
| cisco | secure_firewall_management_center | 6.4.0.8 |
| cisco | secure_firewall_management_center | 6.4.0.9 |
| cisco | secure_firewall_management_center | 6.4.0.10 |
| cisco | secure_firewall_management_center | 6.4.0.11 |
| cisco | secure_firewall_management_center | 6.4.0.12 |
| cisco | secure_firewall_management_center | 6.4.0.13 |
| cisco | secure_firewall_management_center | 6.4.0.14 |
| cisco | secure_firewall_management_center | 6.4.0.15 |
| cisco | secure_firewall_management_center | 6.4.0.16 |
| cisco | secure_firewall_management_center | 6.4.0.17 |
| cisco | secure_firewall_management_center | 6.4.0.18 |
| cisco | secure_firewall_management_center | 6.6.0 |
| cisco | secure_firewall_management_center | 6.6.0.1 |
| cisco | secure_firewall_management_center | 6.6.1 |
| cisco | secure_firewall_management_center | 6.6.3 |
| cisco | secure_firewall_management_center | 6.6.4 |
| cisco | secure_firewall_management_center | 6.6.5 |
| cisco | secure_firewall_management_center | 6.6.5.1 |
| cisco | secure_firewall_management_center | 6.6.5.2 |
| cisco | secure_firewall_management_center | 6.6.7 |
| cisco | secure_firewall_management_center | 6.6.7.1 |
| cisco | secure_firewall_management_center | 6.6.7.2 |
| cisco | secure_firewall_management_center | 7.0.0 |
| cisco | secure_firewall_management_center | 7.0.0.1 |
| cisco | secure_firewall_management_center | 7.0.1 |
| cisco | secure_firewall_management_center | 7.0.1.1 |
| cisco | secure_firewall_management_center | 7.0.2 |
| cisco | secure_firewall_management_center | 7.0.2.1 |
| cisco | secure_firewall_management_center | 7.0.3 |
| cisco | secure_firewall_management_center | 7.0.4 |
| cisco | secure_firewall_management_center | 7.0.5 |
| cisco | secure_firewall_management_center | 7.0.6 |
| cisco | secure_firewall_management_center | 7.0.6.1 |
| cisco | secure_firewall_management_center | 7.0.6.2 |
| cisco | secure_firewall_management_center | 7.0.6.3 |
| cisco | secure_firewall_management_center | 7.0.7 |
| cisco | secure_firewall_management_center | 7.1.0 |
| cisco | secure_firewall_management_center | 7.1.0.1 |
| cisco | secure_firewall_management_center | 7.1.0.2 |
| cisco | secure_firewall_management_center | 7.1.0.3 |
| cisco | secure_firewall_management_center | 7.2.0 |
| cisco | secure_firewall_management_center | 7.2.0.1 |
| cisco | secure_firewall_management_center | 7.2.1 |
| cisco | secure_firewall_management_center | 7.2.2 |
| cisco | secure_firewall_management_center | 7.2.3 |
| cisco | secure_firewall_management_center | 7.2.3.1 |
| cisco | secure_firewall_management_center | 7.2.4 |
| cisco | secure_firewall_management_center | 7.2.4.1 |
| cisco | secure_firewall_management_center | 7.2.5 |
| cisco | secure_firewall_management_center | 7.2.5.1 |
| cisco | secure_firewall_management_center | 7.2.5.2 |
| cisco | secure_firewall_management_center | 7.2.6 |
| cisco | secure_firewall_management_center | 7.2.7 |
| cisco | secure_firewall_management_center | 7.2.8 |
| cisco | secure_firewall_management_center | 7.2.8.1 |
| cisco | secure_firewall_management_center | 7.2.9 |
| cisco | secure_firewall_management_center | 7.3.0 |
| cisco | secure_firewall_management_center | 7.3.1 |
| cisco | secure_firewall_management_center | 7.3.1.1 |
| cisco | secure_firewall_management_center | 7.3.1.2 |
| cisco | secure_firewall_management_center | 7.4.0 |
| cisco | secure_firewall_management_center | 7.4.1 |
| cisco | secure_firewall_management_center | 7.4.1.1 |
| cisco | secure_firewall_management_center | 7.4.2 |
| cisco | secure_firewall_management_center | 7.4.2.1 |
| cisco | secure_firewall_management_center | 7.6.0 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-862 | The product does not perform an authorization check when an actor attempts to access a resource or perform an action. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the web-based management interface of Cisco Secure FMC Software. It allows an authenticated user with low privileges to access troubleshoot files belonging to a different domain on the same FMC instance due to missing authorization checks. Essentially, an attacker can directly access troubleshoot files for other domains they should not have access to.
How can this vulnerability impact me? :
If exploited, this vulnerability could allow an attacker to retrieve troubleshoot files from other domains, potentially exposing sensitive information contained within those files. This could lead to unauthorized disclosure of sensitive data and compromise the confidentiality of information managed by Cisco Secure FMC.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70