ThreatCluster

China-linked APT UAT Exploits Cisco AsyncOS Flaw CVE-2025-20393

First seen 16 Jan 2026, 13:51 UTC Securityaffairs.Co 100% similarity 92

Article Content

Browse articles
ThreatCluster

Cisco identified a critical zero-day vulnerability, tracked as CVE-2025-20393, in its Secure Email products, which was actively exploited by the China-linked APT group UAT-9686. The flaw, affecting Secure Email Gateway and Email and Web Manager, was assigned a CVSS score of 10.0, indicating maximum severity. Cisco has since released a patch to address the vulnerability.

ThreatCluster AI

Community

Browse all →