Cisco warns of ASA firewall zero-days exploited in attacks

Cisco warned customers today to patch two zero-day vulnerabilities that are actively being exploited in attacks and impact the company's firewall software.
The Hacker News

Cisco ASA Firewall Zero-Day Exploits Deploy RayInitiator and LINE VIPER Malware

Cisco ASA zero-day attacks used RayInitiator bootkit and LINE VIPER malware to breach end-of-support firewalls.

Nearly 50,000 Cisco firewalls vulnerable to actively exploited flaws

Roughly 50,000 Cisco Adaptive Security Appliance (ASA) and Firewall Threat Defense (FTD) appliances exposed on the public web ...

CISA instructs federal agencies to patch zero-day flaws in Cisco firewall devices

CISA officials issued the directive on Thursday. The zero-day vulnerabilities in question, CVE-2025-20362 and CVE-2025-20333, ...
SecurityWeek

Cisco Firewall Zero-Days Exploited in China-Linked ArcaneDoor Attacks

Cisco released emergency patches for two firewall vulnerabilities exploited as zero-days in the ArcaneDoor espionage campaign ...