Cisco ASA & FTD Zero-Day Exploitation (CVE-2025-20333 / CVE-2025-20362)

by GoSecure | Oct 10, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an emergency directive following the discovery of an active exploitation campaign targeting Cisco Adaptive Security Appliances (ASA) and Cisco Firepower Threat Defense (FTD) devices.

According to CISA and Cisco, an advanced threat actor is exploiting previously unknown (“zero-day”) vulnerabilities to gain remote access and persistence on affected Cisco devices.

These vulnerabilities are tracked as:

CVE-2025-20333 – Remote Code Execution
CVE-2025-20362 – Privilege Escalation

Affected Platforms:
Cisco ASA (hardware, virtual, and service modules), Cisco ASA firmware on Firepower 2100/4100/9300 series, and Cisco Firepower Threat Defense (FTD) appliances.

Recommended Actions:

Upgrade to the latest available Cisco firmware.
Disconnect or decommission any end-of-support (EoS) devices.
Monitor for unusual outbound traffic or configuration changes.

Learn More
For additional background, please refer to the official CISA directive:
CISA Emergency Directive ED 25-03 – Identify and Mitigate Potential Compromise of Cisco ASA and FTD Devices

If you would like assistance verifying your environment or applying mitigations, please contact GoSecure today.

GoSecure Titan® Managed Extended Detection & Response (MXDR)

GoSecure Titan® Managed Extended Detection & Response (MXDR) Foundation

GoSecure Titan® Vulnerability Management as a Service (VMaaS)

GoSecure Titan® Managed Security Information & Event Monitoring (Managed SIEM)

GoSecure Titan® Managed Perimeter Defense (MPD)

GoSecure Titan® Inbox Detection and Response (IDR)

GoSecure Titan® Secure Email Gateway (SEG)

GoSecure Titan® Threat Modeler

GoSecure Titan® Identity

GoSecure Titan® Platform

GoSecure Professional Security Services

Incident Response Services

Security Maturity Assessment

Privacy Services

PCI DSS Services

Penetration Testing Services

Security Operations

MicrosoftLogo

GoSecure MXDR for Microsoft

Comprehensive visibility and response within your Microsoft security environment

USE CASES

Cyber Risks

Risk-Based Security Measures

Sensitive Data Security

Safeguard sensitive information

Private Equity Firms

Make informed decisions

Cybersecurity Compliance

Fulfill regulatory obligations

Cyber Insurance

A valuable risk management strategy

Ransomware

Combat ransomware with innovative security

Zero-Day Attacks

Halt zero-day exploits with advanced protection

Consolidate, Evolve & Thrive

Get ahead and win the race with the GoSecure Titan® Platform

24/7 MXDR FOUNDATION

GoSecure Titan® Endpoint Detection and Response (EDR)

GoSecure Titan® Next Generation Antivirus (NGAV)

GoSecure Titan® Security Information & Event Monitoring (SIEM)

GoSecure Titan® Inbox Detection and Reponse (IDR)

GoSecure Titan® Intelligence

OUR SOC

Proactive Defense, 24/7

ABOUT GOSECURE

GoSecure is a recognized cybersecurity leader and innovator, pioneering the integration of endpoint, network, and email threat detection into a single Managed Extended Detection and Response (MXDR) service. For over 20 years, GoSecure has been helping customers better understand their security gaps and improve their organizational risk and security maturity through MXDR and Professional Services solutions delivered by one of the most trusted and skilled teams in the industry.

Board of Directors

EVENT CALENDAR

Oct 16 PolarCon 2025

Oct 17 Hackfest – 2025 Edition – In The Shell

Oct 27 MISA Ontario 2025 InfoSec Conference & Tradeshow

Nov 11 Rendez-Vous IA Québec 2025

GoSec

LATEST PRESS RELEASE

GoSecure Partners with Northbridge Financial to Provide Incident Preparation and Response Services

GoSecure, a leader in managed cybersecurity and professional cybersecurity services, is pleased to announce a strategic partnership with Northbridge...

GOSECURE NEWSROOM

REQUEST A MEDIA KIT

GOSECURE BLOG

Fake IT Helpdesk Campaign Delivers Fileless Malware

Oct 10, 2025

Cybercriminals are impersonating corporate IT...

Windows 10 End of Support: Security, Compliance, and Migration Strategies for 2025

Sep 24, 2025

On October 14, 2025, Microsoft will officially...

Microsoft 365 Direct Send Abuse Enables Internal Email Spoofing

Aug 6, 2025

Cybercriminals are exploiting a lesser-known...

READ MORE

RESOURCES

Datasheets & Brochures

Whitepapers & Reports

Webinars & Podcasts

Videos & Infographics

Technical & User Guides

SECURITY ADVISORIES

Fake IT Helpdesk Campaign Delivers Fileless Malware

Cybercriminals are impersonating corporate IT helpdesk staff to trick users into installing remote...

Windows 10 End of Support: Security, Compliance, and Migration Strategies for 2025

On October 14, 2025, Microsoft will officially end support for Windows 10. For more than a decade,...

SEE ALL ADVISORIES

Get A Demo

Build A Quote

Become A Partner

24/7 Emergency – (888)-287-5858