Back

Cisco Firewall Zero-Days Actively Exploited (CVE-2025-20333)

Cisco has disclosed two critical zero-day vulnerabilities in its Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) firewalls that are being actively exploited. The flaws, tracked as CVE-2025-20333 and CVE-2025-20362, can lead to remote code execution and full system control. Security researchers report that nearly 50,000 internet-facing firewalls remain vulnerable worldwide. National security agencies have issued urgent advisories, linking the attacks to a sophisticated threat actor known for targeting network devices. Administrators are strongly advised to apply patches immediately to prevent attackers from bypassing perimeter defenses and compromising their networks.

Latest mentioned: 10-01
Earliest mentioned: 09-25

Sources

securityboulevard.comthehackernews.comcyberscoop.comcisco.comthecyberexpress.comthehackernews.comcisa.govtheregister.comgbhackers.comgbhackers.combleepingcomputer.comsocprime.comcisa.govbleepingcomputer.comthehackernews.comcisa.govbleepingcomputer.comtherecord.mediasecurityaffairs.comtenable.comsecurityonline.infosecurityonline.infogbhackers.comgbhackers.comsecurityboulevard.comsecurityaffairs.comtheregister.cominfosecurity-magazine.comcybersum.net

Also Read

Sophisticated Malware Targets WordPress E-commerce Sites

The Wordfence Threat Intelligence Team has discovered a complex malware campaign targeting WordPress e-commerce sites using the WooCommerce plugin. The malware, disguised as a rogue plugin, employs advanced encryption, fake images, and remote command access for persistent exploitation. It logs user credentials, establishes backdoors, and injects JavaScript skimmers into checkout pages to steal credit card data. The campaign is attributed to Magecart Group 12, known for their persistent credit card skimming activities.

10-31Read more →