CVE-2025-20183: Cisco Secure Web Appliance Range Request Bypass Vulnerability

5.8 CVSS

Description

A vulnerability in a policy-based Cisco Application Visibility and Control (AVC) implementation of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an unauthenticated, remote attacker to evade the antivirus scanner and download a malicious file onto an endpoint.

The vulnerability is due to improper handling of a crafted range request header. An attacker could exploit this vulnerability by sending an HTTP request with a crafted range request header through the affected device. A successful exploit could allow the attacker to evade the antivirus scanner and download malware onto the endpoint without detection by Cisco Secure Web Appliance.

Classification

CVE ID: CVE-2025-20183

CVSS Base Severity: MEDIUM

CVSS Base Score: 5.8

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

Affected Products

Vendor: Cisco

Product: Cisco Secure Web Appliance

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.05% (probability of being exploited)

EPSS Percentile: 19.84% (scored less or equal to compared to others)

EPSS Date: 2025-03-06 (when was this score calculated)

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-swa-range-bypass-2BsEHYSu

Timeline

2025-02-05 16:17:29 UTC
Cisco Security Advisory

Cisco Secure Web Appliance Range Request Bypass Vulnerability
2025-02-06 00:30:15 UTC
CVE

Cisco Secure Web Appliance Range Request Bypass Vulnerability