Cisco Secure Firewall FMC: XSS in Web Mgmt Interface
CVE-2025-20235 Published on August 14, 2025

Cisco Secure Firewall Management Center Software Cross-Site Scripting Vulnerability
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-based management interface. An attacker could exploit this vulnerability by inserting crafted input into various data fields in an affected interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the interface or access sensitive, browser-based information.

NVD

Vulnerability Analysis

CVE-2025-20235 can be exploited with network access, requires user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have a small impact on confidentiality and integrity, and no impact on availability.

Attack Vector:

NETWORK

Attack Complexity:

LOW

Privileges Required:

NONE

User Interaction:

REQUIRED

Scope:

CHANGED

Confidentiality Impact:

LOW

Integrity Impact:

LOW

Availability Impact:

NONE

Weakness Type

What is a XSS Vulnerability?

The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

CVE-2025-20235 has been classified to as a XSS vulnerability or weakness.

Products Associated with CVE-2025-20235

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2025-20235 are published in Cisco Secure Firewall Management Center:

Cisco Secure Firewall Management Center

Affected Versions

Cisco Firepower Management Center:

Version 6.2.3.12 is affected.
Version 6.2.3.1 is affected.
Version 6.2.3.10 is affected.
Version 6.2.3.8 is affected.
Version 6.4.0.6 is affected.
Version 6.2.3 is affected.
Version 6.4.0.7 is affected.
Version 6.2.3.13 is affected.
Version 6.2.3.5 is affected.
Version 6.4.0.4 is affected.
Version 6.2.3.9 is affected.
Version 6.2.3.14 is affected.
Version 6.4.0.1 is affected.
Version 6.2.3.6 is affected.
Version 6.2.3.11 is affected.
Version 6.4.0.8 is affected.
Version 6.2.3.2 is affected.
Version 6.4.0.2 is affected.
Version 6.2.3.3 is affected.
Version 6.4.0.3 is affected.
Version 6.2.3.7 is affected.
Version 6.2.3.4 is affected.
Version 6.4.0.5 is affected.
Version 6.4.0 is affected.
Version 6.2.3.15 is affected.
Version 6.6.0 is affected.
Version 6.4.0.9 is affected.
Version 6.2.3.16 is affected.
Version 6.6.0.1 is affected.
Version 6.6.1 is affected.
Version 6.4.0.10 is affected.
Version 6.4.0.11 is affected.
Version 6.6.3 is affected.
Version 6.6.4 is affected.
Version 6.4.0.12 is affected.
Version 7.0.0 is affected.
Version 6.2.3.17 is affected.
Version 7.0.0.1 is affected.
Version 6.6.5 is affected.
Version 7.0.1 is affected.
Version 7.1.0 is affected.
Version 6.6.5.1 is affected.
Version 6.4.0.13 is affected.
Version 7.0.1.1 is affected.
Version 6.2.3.18 is affected.
Version 6.4.0.14 is affected.
Version 6.6.5.2 is affected.
Version 7.1.0.1 is affected.
Version 7.0.2 is affected.
Version 6.4.0.15 is affected.
Version 7.2.0 is affected.
Version 7.0.2.1 is affected.
Version 7.0.3 is affected.
Version 6.6.7 is affected.
Version 7.1.0.2 is affected.
Version 7.2.0.1 is affected.
Version 7.0.4 is affected.
Version 7.2.1 is affected.
Version 7.0.5 is affected.
Version 6.4.0.16 is affected.
Version 7.3.0 is affected.
Version 7.2.2 is affected.
Version 6.6.7.1 is affected.
Version 7.3.1 is affected.
Version 7.2.3 is affected.
Version 7.1.0.3 is affected.
Version 7.2.3.1 is affected.
Version 7.2.4 is affected.
Version 7.0.6 is affected.
Version 7.2.4.1 is affected.
Version 7.2.5 is affected.
Version 7.3.1.1 is affected.
Version 7.4.0 is affected.
Version 6.4.0.17 is affected.
Version 7.0.6.1 is affected.
Version 7.2.5.1 is affected.
Version 7.4.1 is affected.
Version 7.2.6 is affected.
Version 7.4.1.1 is affected.
Version 7.0.6.2 is affected.
Version 6.4.0.18 is affected.
Version 6.6.7.2 is affected.
Version 7.2.7 is affected.
Version 7.2.5.2 is affected.
Version 7.3.1.2 is affected.
Version 7.2.8 is affected.
Version 7.6.0 is affected.
Version 7.4.2 is affected.
Version 7.2.8.1 is affected.
Version 7.0.6.3 is affected.
Version 7.4.2.1 is affected.
Version 7.2.9 is affected.
Version 7.0.7 is affected.
Version 7.4.2.2 is affected.

Exploit Probability

EPSS

0.02%

Percentile

3.45%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.