CVE-2025-20268

Name of the Vulnerable Software and Affected Versions: Cisco Secure Firewall Threat Defense (FTD) Software (affected versions not specified)

Description: A flaw exists in the Geolocation-Based Remote Access (RA) VPN feature that may allow a remote, unauthenticated attacker to circumvent configured HTTP connection policies based on country or region. This issue is due to incomplete URL parsing. An attacker could exploit this by sending a specially crafted HTTP connection through the affected device, potentially gaining access to a network that should have been restricted.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.