CVE-2025-20185

LOW

Cisco AsyncOS - Privilege Escalation

Title source: llm

Description

A vulnerability in the implementation of the remote access functionality of Cisco AsyncOS Software for Cisco Secure Email and Web Manager, Cisco Secure Email Gateway, and Cisco Secure Web Appliance could allow an authenticated, local attacker to elevate privileges to root. The attacker must authenticate with valid administrator credentials. This vulnerability is due to an architectural flaw in the password generation algorithm for the remote access functionality. An attacker could exploit this vulnerability by generating a temporary password for the service account. A successful exploit could allow the attacker to execute arbitrary commands as root and access the underlying operating system. Note: The Security Impact Rating (SIR) for this vulnerability is Medium due to the unrestricted scope of information that is accessible to an attacker.

References (1)

[Vendor Advisory] https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-sma-wsa-multi-yKUJhS34

Scores

CVSS v3 3.4

EPSS 0.0002

EPSS Percentile 6.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-250

Status published

Products (14)

cisco/asyncos 13.0.0-392

cisco/asyncos 13.0.5-007

cisco/asyncos 13.5.1-277

cisco/asyncos 13.5.4-038

cisco/asyncos 14.0.0-698

cisco/asyncos 14.2.0-620

cisco/asyncos 14.2.1-020

cisco/asyncos 14.3.0-032

cisco/asyncos 15.0.0-104

cisco/asyncos 15.0.1-030

... and 4 more

Published Feb 05, 2025

Tracked Since Feb 18, 2026