CVE-2025-20207

MEDIUM

Cisco Secure Email/Web Appliance - Info Disclosure

Title source: llm

Description

A vulnerability in Simple Network Management Protocol (SNMP) polling for Cisco Secure Email and Web Manager, Cisco Secure Email Gateway, and Cisco Secure Web Appliance could allow an authenticated, remote attacker to obtain confidential information about the underlying operating system. This vulnerability exists because the appliances do not protect confidential information at rest in response to SNMP poll requests. An attacker could exploit this vulnerability by sending a crafted SNMP poll request to the affected appliance. A successful exploit could allow the attacker to discover confidential information that should be restricted. To exploit this vulnerability, an attacker must have the configured SNMP credentials.

References (1)

Core 1

Core References

Various Sources

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-sma-wsa-snmp-inf-FqPvL8sX

Scores

CVSS v3 4.3

EPSS 0.0009

EPSS Percentile 26.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-200

Status published

Products (50)

Cisco/Cisco Secure Email 13.0.0-392

Cisco/Cisco Secure Email 13.0.5-007

Cisco/Cisco Secure Email 13.5.1-277

Cisco/Cisco Secure Email 13.5.4-038

Cisco/Cisco Secure Email 14.0.0-698

Cisco/Cisco Secure Email 14.2.0-620

Cisco/Cisco Secure Email 14.2.1-020

Cisco/Cisco Secure Email 14.3.0-032

Cisco/Cisco Secure Email 15.0.0-104

Cisco/Cisco Secure Email 15.0.1-030

... and 40 more

Published Feb 05, 2025

Tracked Since Feb 18, 2026