Cisco Security Advisories — December 2025 — Cisco Security Advisories

Cisco Security Advisories · December 2025 — Cisco Security Advisories

2 advisories 2 CVEs 2 EXPLOITED

PSIRT bulletins (cisco-sa-*) and cross-source CVEs naming Cisco for 2025-12. Mirrored into Vulnetix VDB.

Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 2 are already weaponised in the wild — see the Exploited section.

Back to archive Open Console

Advisories

cisco-sa-sma-attack-N9bf4

Cisco PSIRTExploitedHIGH2025-12-17

Reports About Cyberattacks Against Cisco Secure Email Gateway And Cisco Secure Email and Web Manager

CVEs:CVE-2025-20393

Affected products

Product	Status	Vendor	Package	Ecosystem
CVRFPID-189790	affected	Cisco	—	—
CVRFPID-189791	affected	Cisco	—	—

Upstream advisory

cisco-sa-react-flight-TYw32Ddb

Cisco PSIRTExploitedHIGH2025-12-04

Remote Code Execution Vulnerability in React and Next.js Frameworks: December 2025

CVEs:CVE-2025-55182

Upstream advisory

Need live exploit intelligence?

Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.

All months Open Console