CVE-2025-20251 | Cisco ASA/Firepower Threat Defense SSL VPN Service improper validation of specified type of input (cisco-sa-asaftd-http-file-hUyX2jL4 / WID-SEC-2025-1839)
A vulnerability identified as critical has been detected in Cisco ASA and Firepower Threat Defense. This vulnerability affects unknown code of the component SSL VPN Service. The manipulation leads to improper validation of specified type of input.
This vulnerability was named CVE-2025-20251. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.