{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-03T06:13:59.756","vulnerabilities":[{"cve":{"id":"CVE-2025-20207","sourceIdentifier":"psirt@cisco.com","published":"2025-02-05T17:15:26.410","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability in Simple Network Management Protocol (SNMP) polling for Cisco Secure Email and Web Manager, Cisco Secure Email Gateway, and Cisco Secure Web Appliance could allow an authenticated, remote attacker to obtain confidential information about the underlying operating system.\r\n\r\nThis vulnerability exists because the appliances do not protect confidential information at rest in response to SNMP poll requests. An attacker could exploit this vulnerability by sending a crafted SNMP poll request to the affected appliance. A successful exploit could allow the attacker to discover confidential information that should be restricted. To exploit this vulnerability, an attacker must have the configured SNMP credentials."},{"lang":"es","value":"Una vulnerabilidad en el sondeo de Simple Network Management Protocol (SNMP) para Cisco Secure Email and Web Manager, Cisco Secure Email Gateway y Cisco Secure Web Appliance podría permitir que un atacante remoto autenticado obtenga información confidencial sobre el sistema operativo subyacente. Esta vulnerabilidad existe porque los dispositivos no protegen la información confidencial en reposo en respuesta a las solicitudes de sondeo SNMP. Un atacante podría aprovechar esta vulnerabilidad enviando una solicitud de sondeo SNMP manipulada al dispositivo afectado. Una explotación exitosa podría permitir al atacante descubrir información confidencial que debería estar restringida. Para aprovechar esta vulnerabilidad, un atacante debe tener las credenciales SNMP configuradas."}],"metrics":{"cvssMetricV31":[{"source":"psirt@cisco.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"psirt@cisco.com","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"references":[{"url":"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-sma-wsa-snmp-inf-FqPvL8sX","source":"psirt@cisco.com"}]}}]}