CVE-2025-20220

CWE-78 — OS Command Injection4 documents4 sources

Severity

6.0MEDIUM

EPSS

0.0%

top 98.09%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Cisco Firepower Management Center Cisco Cisco Firepower Threat Defense Software

Timeline

PublishedAug 14

Description

A vulnerability in the CLI of Cisco Secure Firewall Management Center (FMC) Software and Cisco Secure Firewall Threat Defense (FTD) Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system as root. This vulnerability is due to improper input validation for specific CLI commands. An attacker could exploit this vulnerability by injecting operating system commands into a legitimate command. A successful exploit could allow the attacker t…

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:NExploitability: 0.8 | Impact: 5.2

Affected Packages2 packages

▶CVEListV5cisco/cisco_firepower_threat_defense_software10 versions+9

▶CVEListV5cisco/cisco_firepower_management_center10 versions+9

🔴Vulnerability Details

CVEList

CVE-2025-20220: A vulnerability in the CLI of Cisco Secure Firewall Management Center (FMC) Software and Cisco Secure Firewall Threat Defense (FTD) Software could all↗2025-08-14

▶

GHSA

GHSA-q2qh-qxqj-v3qp: A vulnerability in the CLI of Cisco Secure Firewall Management Center (FMC) Software and Cisco Secure Firewall Threat Defense (FTD) Software could all↗2025-08-14

▶

📋Vendor Advisories

Cisco

Cisco Secure Firewall Management Center and Secure Firewall Threat Defense Software Command Injection Vulnerability↗2025-08-14

▶