关键漏洞信息 1. Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability - CVE: CVE-2025-20333 - Impact: Critical - Last Updated: 2025 Nov 06 - Version: 2.1 2. Cisco Secure Firewall Adaptive Security Appliance Software, Secure Firewall Threat Defense Software, IOS Software, IOS XE Software, and IOS XR Software Web Services Remote Code Execution Vulnerability - CVE: CVE-2025-20363 - Impact: Critical - Last Updated: 2025 Nov 06 - Version: 1.1 3. Cisco Unified Contact Center Express Remote Code Execution Vulnerabilities - CVE: CVE-2025-20354, CVE-2025-20358 - Impact: Critical - Last Updated: 2025 Nov 05 - Version: 1.0 4. Cisco Identity Services Engine RADIUS Suppression Denial of Service Vulnerability - CVE: CVE-2025-20343 - Impact: High - Last Updated: 2025 Nov 05 - Version: 1.0 5. Multiple Cisco Contact Center Products Vulnerabilities - CVE: CVE-2025-20374, CVE-2025-20375, ... - Impact: Medium - Last Updated: 2025 Nov 05 - Version: 1.0 6. Cisco BroadWorks CommPilot Application Software Cross-Site Scripting Vulnerability - CVE: CVE-2025-20307 - Impact: Medium - Last Updated: 2025 Oct 21 - Version: 1.1 7. Cisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerability - CVE: CVE-2025-20352 - Impact: High - Last Updated: 2025 Oct 06 - Version: 2.3 8. Cisco IOS and IOS XE Software TACACS+ Authentication Bypass Vulnerability - CVE: CVE-2025-20160 - Impact: High - Last Updated: 2025 Oct 01 - Version: 1.1 总结 多个Cisco产品存在严重漏洞,主要涉及远程代码执行、权限绕过、Denial of Service等。 漏洞影响广泛,涉及多种硬件和软件产品。 最近更新的漏洞集中于2025年10月和11月。