What is CVE-2025-20265?

CVE-2025-20265 is a critical-severity vulnerability in Cisco Firepower Management Center, classified under Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection). CVSS score: 10.0/10. Published 2025-08-14.

How severe is CVE-2025-20265?

Critical severity. CVSS v3 base score is 10.0 out of 10.

Is CVE-2025-20265 known to be exploited?

7 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Cisco Firepower Management Center

CVE-2025-20265

A vulnerability in the RADIUS subsystem implementation of Cisco Secure Firewall Management Center (FMC) Software could allow an unauthenticated, remote attacker to inject arbitrary shell commands that are executed by the device.  T…

EPSS: 0.002 (44.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 10.0 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H.

Affected products

Cisco Firepower Management Center — versions 7.0.7, 7.7.0

Weakness classification (CWE)

CWE-74 — Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection)

Public proof-of-concept exploits

References

cisco-sa-fmc-radius-rce-TNBKf79

Frequently asked questions

What is CVE-2025-20265?: CVE-2025-20265 is a critical-severity vulnerability in Cisco Firepower Management Center, classified under Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection). CVSS score: 10.0/10. Published 2025-08-14.
How severe is CVE-2025-20265?: Critical severity. CVSS v3 base score is 10.0 out of 10.
Is CVE-2025-20265 known to be exploited?: 7 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.