Cisco finally fixes max-severity bug under attack for weeks
Cisco released updates fixing a maximum-severity AsyncOS vulnerability (CVE-2025-20393) exploited for root access and persistence on SEG and SEWM appliances.
Cisco says Chinese hackers are exploiting its customers with a new zero-day | TechCrunch
Critical Cisco AsyncOS vulnerability enables full takeover of exposed devices; no patches exist and wiping/rebuilding software is the only current mitigation.