CVE-2025-20268 — Improper Handling of Values in Cisco Firepower Threat Defense Software

CWE-229 — Improper Handling of Values4 documents4 sources

Severity

5.8MEDIUMNVD

EPSS

0.0%

top 88.95%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Firepower Threat Defense Software

Timeline

PublishedAug 14

Description

A vulnerability in the Geolocation-Based Remote Access (RA) VPN feature of Cisco Secure Firewall Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured policies to allow or deny HTTP connections based on a country or region. This vulnerability exists because the URL string is not fully parsed. An attacker could exploit this vulnerability by sending a crafted HTTP connection through the targeted device. A successful exploit could allow the attacker to …

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages1 packages

▶CVEListV5cisco/cisco_firepower_threat_defense_software7.7.0

🔴Vulnerability Details

CVEList

Cisco Secure Firewall Threat Defense Software Geolocation Remote Access VPN Bypass Vulnerability↗2025-08-14

▶

GHSA

GHSA-6f5f-5ghv-m9h2: A vulnerability in the Geolocation-Based Remote Access (RA) VPN feature of Cisco Secure Firewall Threat Defense (FTD) Software could allow an unauthen↗2025-08-14

▶

📋Vendor Advisories

Cisco

Cisco Secure Firewall Threat Defense Software Geolocation Remote Access VPN Bypass Vulnerability↗2025-08-14

▶