{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-16T15:55:05.522","vulnerabilities":[{"cve":{"id":"CVE-2025-20153","sourceIdentifier":"psirt@cisco.com","published":"2025-02-19T16:15:40.860","lastModified":"2025-07-31T12:40:47.020","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability in the email filtering mechanism of Cisco Secure Email Gateway could allow an unauthenticated, remote attacker to bypass the configured rules and allow emails that should have been denied to flow through an affected device. &nbsp;\r\n\r\nThis vulnerability is due to improper handling of email that passes through an affected device. An attacker could exploit this vulnerability by sending a crafted email through the affected device. A successful exploit could allow the attacker to bypass email filters on the affected device."},{"lang":"es","value":"Una vulnerabilidad en el mecanismo de filtrado de correo electrónico de Cisco Secure Email Gateway podría permitir que un atacante remoto no autenticado eluda las reglas configuradas y permita que correos electrónicos que deberían haber sido denegados fluyan a través de un dispositivo afectado. Esta vulnerabilidad se debe a una gestión inadecuada del correo electrónico que pasa a través de un dispositivo afectado. Un atacante podría aprovechar esta vulnerabilidad enviando un correo electrónico diseñado a través del dispositivo afectado. Una explotación exitosa podría permitir al atacante eludir los filtros de correo electrónico en el dispositivo afectado."}],"metrics":{"cvssMetricV31":[{"source":"psirt@cisco.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N","baseScore":5.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"psirt@cisco.com","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:secure_email_gateway:13.0.0-392:*:*:*:*:*:*:*","matchCriteriaId":"2B665D0A-BE53-4F56-A6AE-26351A0A058B"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:secure_email_gateway:13.0.5-007:*:*:*:*:*:*:*","matchCriteriaId":"F4B3CA68-DF66-4075-AA03-7E8B2E219A09"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:secure_email_gateway:13.5.1-277:*:*:*:*:*:*:*","matchCriteriaId":"E804F494-16F9-445C-9946-52319506C248"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:secure_email_gateway:13.5.4-038:*:*:*:*:*:*:*","matchCriteriaId":"BFF60385-9992-448E-8FBA-1F91067466E6"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:secure_email_gateway:14.0.0-698:*:*:*:*:*:*:*","matchCriteriaId":"EB872778-1210-4BC8-B324-302BD236585D"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:secure_email_gateway:14.2.0-620:*:*:*:*:*:*:*","matchCriteriaId":"39B26E72-1681-4430-BC85-4D3918AD3C1F"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:secure_email_gateway:14.2.1-020:*:*:*:*:*:*:*","matchCriteriaId":"C8C47FE2-D861-45B2-B4D9-6CDFE725FECB"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:secure_email_gateway:14.3.0-032:*:*:*:*:*:*:*","matchCriteriaId":"D4800305-6ECA-4989-889B-C410C33BDF6A"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:secure_email_gateway:15.0.0-104:*:*:*:*:*:*:*","matchCriteriaId":"6170EBB8-805A-4AEB-9981-164EC1702061"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:secure_email_gateway:15.0.1-030:*:*:*:*:*:*:*","matchCriteriaId":"2B513990-27FD-4865-9FD2-202B68B9807A"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:secure_email_gateway:15.0.3-002:*:*:*:*:*:*:*","matchCriteriaId":"C09E85C0-7339-494F-BC4B-5489D28AC3E9"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:secure_email_gateway:15.5.0-048:*:*:*:*:*:*:*","matchCriteriaId":"BDC4AB77-50C8-4852-A806-5CCF89D33A0E"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:secure_email_gateway:15.5.1-055:*:*:*:*:*:*:*","matchCriteriaId":"22C005A1-635B-497F-BFE4-27D97ABC13EF"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:secure_email_gateway:15.5.2-018:*:*:*:*:*:*:*","matchCriteriaId":"4AE7346E-44AA-4032-9C85-104912555277"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:secure_email_gateway:16.0.0-050:*:*:*:*:*:*:*","matchCriteriaId":"CDAD9D75-43A9-434E-A1DD-7DCA824A4A58"}]}]}],"references":[{"url":"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-mailpol-bypass-5nVcJZMw","source":"psirt@cisco.com","tags":["Vendor Advisory"]}]}}]}