CVE-2025-20218
Cisco Secure Firepower Management Center Software XPATH Injection Vulnerability
In short
A flaw in Cisco's firewall management interface allows someone with admin credentials to send a specially crafted request that bypasses input checks, potentially retrieving sensitive information from the system.
Technical detail
XPath injection vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) due to insufficient input validation. An authenticated remote attacker with valid administrative credentials can craft a malicious request to extract sensitive data by manipulating XPath queries, requiring prior authentication to the management interface.
Summary generated and translated by AI from the official description.
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an authenticated, remote attacker to retrieve sensitive information from an affected device.
This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending a crafted request to the web-based management interface of an affected device. A successful exploit could allow the attacker to retrieve sensitive information from the affected device.
To exploit this vulnerability, the attacker must have valid administrative credentials.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Affected products
Cisco · Cisco Firepower Management CenterWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →