FeedThreat IntelligenceHackers Exploiting Cisco Firepower Devices’ Using n-day Vuln...
Threat IntelligenceCyber Security News
9.9CRITICAL

Hackers Exploiting Cisco Firepower Devices’ Using n-day Vulnerabilities to Gain Unauthorized Access

📅 25 April 2026 at 02:05 UTC📰 Cyber Security NewsView original source ↗
Hackers Exploiting Cisco Firepower Devices’ Using n-day Vulnerabilities to Gain Unauthorized Access

State-sponsored threat actors are actively targeting Cisco Firepower devices by chaining known vulnerabilities to deploy a highly customized backdoor. Cisco Talos recently discovered that the espionage-focused threat group UAT-4356 is exploiting two n-day vulnerabilities, tracked as CVE-2025-20333 and CVE-2025-20362, to infiltrate Firepower Extensible Operating System (FXOS) environments. UAT-4356 previously orchestrated the ArcaneDoor campaign, which successfully […] The post Hackers Exploiting Cisco Firepower Devices’ Using n-day Vulnerabilities to Gain Unauthorized Access appeared first on Cyber Security News.

🤖 AI BriefingAuto-generated threat analysis
🔍Threat Overview

State-sponsored threat actors UAT-4356 are exploiting n-day vulnerabilities CVE-2025-20333 and CVE-2025-20362 in Cisco Firepower devices to gain unauthorized access, targeting Firepower Extensible Operating System (FXOS) environments.

⚙️Technical Details
CVEs
CVE-2025-20333CVE-2025-20362Affected Systems: Cisco Adaptive Security Appliance Software and Cisco Firepower Threat DefenseAttack Vectors: NETWORK
Affected Systems
Cisco Adaptive Security Appliance Software and Cisco Firepower Threat Defense
Attack Vectors
NETWORK
💥Impact Assessment
Severity: HIGH
Who Is at Risk
Organizations with Cisco Firepower devices, particularly those in the finance, government, and defense sectors.
🛡️Recommended Actions
1Implement immediate patches for CVE-2025-20333 and CVE-2025-20362
2Conduct regular vulnerability scans to detect potential exploitation
3Enforce strict access controls and monitoring on Firepower devices
📦Affected Products
Cisco Adaptive Security Appliance SoftwareCisco Firepower Threat DefenseCisco Adaptive Security Appliance Software, Cisco Firepower Threat Defense
🔐NVD Verified DataVERIFIED
CVE-2025-20333CVSS 9.9CRITICAL
Attack Vector
NETWORK
Complexity
LOW
Vector String
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Weaknesses
CWE-120
Affected Products (CPE)
Cisco Adaptive Security Appliance SoftwareCisco Firepower Threat Defense
CVE-2025-20362CVSS 8.6HIGH
Attack Vector
NETWORK
Complexity
LOW
Vector String
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
Weaknesses
CWE-862
Affected Products (CPE)
Cisco Adaptive Security Appliance SoftwareCisco Firepower Threat Defense

Read the full article

This is a curated summary. The complete article is available at Cyber Security News.

Read on Cyber Security News
← Back to feed