CVE-2025-20251

Name of the Vulnerable Software and Affected Versions: Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software (affected versions not specified)

Description: A vulnerability in the Remote Access SSL VPN service could allow an authenticated, remote attacker to create or delete arbitrary files on the underlying operating system. Manipulation of critical system files could lead to a denial of service (DoS) condition, potentially dropping existing sessions and preventing new ones. An exploited device requires a manual reboot to recover. The issue is due to insufficient input validation when processing HTTP requests. An attacker could exploit this by sending crafted HTTP requests to an affected device.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.