Cisco reports a critical cyberattack targeting its Secure Email Gateway and Web Manager appliances exploiting CVE-2025-20393. The campaign allows attackers to gain root access and maintain long-term control over compromised devices, emphasizing the importance of proper configuration and security measures. #CVE-2025-20393 #AsyncOS
Keypoints
- Cisco has identified a critical vulnerability affecting certain appliances running AsyncOS software.
- The attack exploits the enabled Spam Quarantine feature exposed to the internet, risking remote root access.
- No immediate workarounds are available; organizations should consider appliance rebuilding if compromised.
- Security hardening steps include restricting access, deploying behind firewalls, and regularly updating software.
- Monitoring logs and following Ciscoβs deployment guides are crucial for preventing and detecting ongoing threats.
Read More: https://thecyberexpress.com/cisco-cve-2025-20393-secure-email-cyberattack/