CISA Releases Implementation Guidance for Emergency Directive 25-03 on CISCO ASA and Firepower Devices
Created: Thursday, November 13, 2025 - 17:30
Categories:
(TLP:CLEAR) Yesterday, CISA published formal Implementation Guidance to assist federal agencies in addressing critical vulnerabilities in Cisco Adaptive Security Appliances (ASA) and Firepower devices, which were initially discussed in an Emergency Directive issued in late September. Importantly, threat actors continue to target these devices, and an organization’s mitigation actions may be incomplete if it upgraded to a software version that is still vulnerable and if it didn’t address both CVEs…