Cisco Patches Zero-Day RCE Exploited by China-Linked APT in Secure Email Gateways
Cisco released fixes for CVE-2025-20393, a CVSS 10.0 zero-day RCE flaw in AsyncOS exploited by a China-linked APT via email security appliances.
More info