Topic: http request validation

Cisco Patches Critical Zero-Day Flaw in AsyncOS (CVE-2025-20393)

Cisco has patched a critical zero-day vulnerability (CVE-2025-20393) in its Email Security and Web Manager appliances, which was actively exploited by suspected state-sponsored actors. The flaw allowed unauthenticated attackers to execute root-level commands via a flaw in the Spam Quarantine feat...