Cisco has issued urgent patches for two critical vulnerabilities affecting its Secure Firewall ASA and FTD software, which are actively being exploited. The vulnerabilities could allow remote attackers to execute arbitrary code or bypass authentication, posing a significant threat to affected systems. #CVE202520333 #CVE202520362 #ArcaneDoor #UAT4356
Keypoints
- Cisco warns of critical security flaws in its VPN web server components.
- The vulnerabilities allow remote code execution and unauthorized access through crafted HTTP requests.
- Active exploitation attempts are linked to a threat group called UAT4356, associated with ArcaneDoor activities.
- CISA has issued an emergency directive requiring federal agencies to apply patches immediately.
- The vulnerabilities are present in Cisco ASA and some Cisco Firepower versions, with exploit techniques affecting ROM manipulation.
Read More: https://thehackernews.com/2025/09/urgent-cisco-asa-zero-day-duo-under.html