Cisco reported a security vulnerability
Cisco published a Security Bulletin reporting a critical security vulnerability (CVE-2025-20393) affecting Cisco Secure Email Gateway, Cisco Secure Email and Web Manager. The vulnerability was discovered in Cisco AsyncOS software, and exploitation of this vulnerability could allow an attacker to execute arbitrary commands with root privileges on the target system.
Cisco recommends that users follow the recommendations published in this Security Bulletin.
More information is available in the Cisco Security Bulletin - cisco.com.
29 December 2025