Cisco Warns of Critical CVE-2025-20265 Flaw in Secure FMC Software

Cisco has alerted on CVE-2025-20265, a CVSS 10.0 flaw in Secure FMC software versions 7.4.1-7.6.0, enabling unauthenticated remote command injection via RADIUS. This vulnerability risks full system compromise in exposed networks. Immediate patching is urged, highlighting ongoing Cisco authentication weaknesses and the need for enhanced enterprise defenses.