Cisco has identified a new attack exploiting vulnerabilities in its Secure Firewall and Unified Contact Center Express products, urging immediate updates to prevent DoS and remote code execution. These flaws were exploited as zero-days in malware campaigns like RayInitiator and LINE VIPER, with patches now available. #CVEs2025-20333 #RayInitiator
Keypoints
- Cisco disclosed a new attack targeting its Secure Firewall devices vulnerable to CVE-2025-20333 and CVE-2025-20362.
- The vulnerabilities can cause device reloads, leading to denial-of-service conditions if not patched.
- Exploited as zero-days in malware campaigns such as RayInitiator and LINE VIPER.
- Critical flaws in Unified Contact Center Express allow remote privilege escalation and arbitrary command execution.
- Cisco recommends applying updates immediately to mitigate potential exploits and security threats.
Read More: https://thehackernews.com/2025/11/cisco-warns-of-new-firewall-attack.html