Cisco has issued a warning about a critical zero-day vulnerability in Cisco AsyncOS software, actively exploited by a China-linked APT group known as UAT-9686. The threat involves bypassing security with remote command execution, affecting multiple appliances and prompting federal mitigation efforts. #CVE202520593 #UAT9686
Keypoints
- Cisco AsyncOS contains a zero-day flaw, CVE-2025-20393, with a CVSS score of 10.0.
- Attackers can execute arbitrary commands with root privileges through this vulnerability.
- The threat group UAT-9686 has exploited the flaw to deploy tunneling tools and backdoors.
- Mitigation includes disabling the Spam Quarantine feature and securing internet-facing interfaces.
- The U.S. CISA has added this vulnerability to its KEV catalog, requiring urgent patching for federal networks.
Read More: https://thehackernews.com/2025/12/cisco-warns-of-active-attacks.html