Ptechhub
  • News
  • Industries
    • Enterprise IT
    • AI & ML
    • Cybersecurity
    • Finance
    • Telco
  • Brand Hub
    • Lifesight
  • Blogs
No Result
View All Result
  • News
  • Industries
    • Enterprise IT
    • AI & ML
    • Cybersecurity
    • Finance
    • Telco
  • Brand Hub
    • Lifesight
  • Blogs
No Result
View All Result
PtechHub
No Result
View All Result

Cisco, SonicWall Disclose New Attacks Exploiting Zero-Day Flaws

CRN by CRN
December 17, 2025
Home News
Share on FacebookShare on Twitter


The two vendors revealed details about the cyberattacks in separate disclosures Wednesday.

Zero-day vulnerabilities in Cisco and SonicWall products have been exploited in new cyberattack campaigns, the vendors disclosed Wednesday.

The companies shared details about the attacks, which are not related, in separate disclosures online. Fixes are available for the SonicWall vulnerability, which impacts the vendor’s SMA1000 Appliance Management Console—though as of this writing, patches were not yet available for the Cisco vulnerability.

[Related: 10 Major Cyberattacks And Data Breaches In 2025 (So Far)]

The Cisco flaw, which is considered a maximum-severity vulnerability, has been exploited to target Cisco Secure Email Gateway systems as well as Cisco Secure Email and Web Manager, according to the company.

In a statement provided to CRN Wednesday, Cisco said that the “new cyberattack campaign [has been] targeting a limited subset of devices with certain ports open to the internet that are running Cisco AsyncOS Software for Cisco Secure Email Gateway and Cisco Secure Email and Web Manager.”

The vulnerability (tracked as CVE-2025-20393) has received a severity score of 10.0 out of 10.0.

There are no workarounds available for the issue so far, according to the Cisco advisory. However, “we strongly urge customers to follow guidance in the advisory to assess any exposure and mitigate risk,” Cisco said in the statement.

“Cisco is actively investigating the issue and developing a permanent remediation,” the company said.

In a separate post Wednesday, the Cisco Talos threat research team pointed to evidence that a China-linked threat group, tracked as UAT-9686, has been detected exploiting the vulnerability.

“We have observed overlaps in tactics, techniques and procedures (TTPs), infrastructure, and victimology between UAT-9686 and other Chinese-nexus threat actors Talos tracks,” the Talos researchers wrote.

Meanwhile, the zero-day SonicWall SMA1000 vulnerability (tracked as CVE-2025-40602) has been exploited in combination with a previously disclosed flaw in attacks, according to a SonicWall advisory.

The zero-day, local privilege escalation vulnerability has received a severity score of 6.6 out of 10.0, but the previously disclosed bug is considered a critical-severity issue with a score of 9.8 out of 10.0. The previous flaw was fixed in January and is tracked as CVE-2025-23006.

In its advisory Wednesday, SonicWall said that the zero-day SMA1000 flaw “was reported to be leveraged in combination with CVE-2025-23006 (CVSS score 9.8) to achieve unauthenticated remote code execution with root privileges.”

CRN has reached out to SonicWall for comment.

Patches are available as part of the SMA1000 12.4.3-03245 (platform-hotfix) and higher versions, as well as 12.5.0-02283 (platform-hotfix) and higher versions, SonicWall said.



Source link

Tags: Cloud SoftwareCyberattacksCybersecuritynetwork securitySaaSVulnerabilities
CRN

CRN

Next Post
FITCH RATINGS UPGRADES TOTAL PLAY’S RATING TO ‘B’, WITH STABLE OUTLOOK

FITCH RATINGS UPGRADES TOTAL PLAY'S RATING TO 'B', WITH STABLE OUTLOOK

Recommended.

Sivers Semiconductors to Participate in the 15th Annual Roth London Conference

Sivers Semiconductors to Participate in the 15th Annual Roth London Conference

June 18, 2025
Inlayer Continues Momentum with Strategic Partnerships & New Manufacturer Support

Inlayer Continues Momentum with Strategic Partnerships & New Manufacturer Support

April 15, 2025

Trending.

CELLCOM ISRAEL LTD. Announcement of A Special General Meeting of The Shareholders of The Company

CELLCOM ISRAEL LTD. Announcement of A Special General Meeting of The Shareholders of The Company

May 21, 2025
Veeam Debuts Data Resiliency Maturity Model To Assess, Improve Customers’ Cyber Resiliency

Veeam Debuts Data Resiliency Maturity Model To Assess, Improve Customers’ Cyber Resiliency

April 23, 2025
MocPOGO Easter Special Deals: The Pokémon GO Spoofer You Need for Might and Mastery 2025!

MocPOGO Easter Special Deals: The Pokémon GO Spoofer You Need for Might and Mastery 2025!

April 7, 2025
VNET Wins 40MW Wholesale Order from Leading Internet Company for Its New Strategic IDC Campus

VNET Wins 40MW Wholesale Order from Leading Internet Company for Its New Strategic IDC Campus

September 11, 2025
Insurance Modernization at Risk as Workforce Strategies Fall Behind, Says Info-Tech Research Group

Insurance Modernization at Risk as Workforce Strategies Fall Behind, Says Info-Tech Research Group

May 8, 2026

PTechHub

A tech news platform delivering fresh perspectives, critical insights, and in-depth reporting — beyond the buzz. We cover innovation, policy, and digital culture with clarity, independence, and a sharp editorial edge.

Follow Us

Industries

  • AI & ML
  • Cybersecurity
  • Enterprise IT
  • Finance
  • Telco

Navigation

  • About
  • Advertise
  • Privacy & Policy
  • Contact

Subscribe to Our Newsletter

  • About
  • Advertise
  • Privacy & Policy
  • Contact

Copyright © 2025 | Powered By Porpholio

No Result
View All Result
  • News
  • Industries
    • Enterprise IT
    • AI & ML
    • Cybersecurity
    • Finance
    • Telco
  • Brand Hub
    • Lifesight
  • Blogs

Copyright © 2025 | Powered By Porpholio