Ref# ADV2025_158 | Date: Jun 26th 2025

---

Cisco Security has published a security advisory highlighting vulnerabilities in the following products on June 18th, 2025. It is recommended that you take the necessary precautions by ensuring your products are always updated. 

• Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway – multiple models 

• Secure Endpoint Connector for Linux – versions prior to 1.26.1 

• Secure Endpoint Connector for Mac – versions prior to 1.26.1 

• Secure Endpoint Connector for Windows – versions prior to 7.5.21 and 8.4.5 

• Secure Endpoint Private Cloud – versions prior to 4.2.2 

For more information on these updates, you can follow these URLs: 

• ClamAV UDF File Parsing Out-of-Bounds Read Information Disclosure Vulnerability 

• Cisco Meraki MX and Z Series AnyConnect VPN with Client Certificate Authentication Denial of Service Vulnerability 

• Cisco Security Advisories 

The Guyana National CIRT recommends that users and administrators review these updates and apply it where necessary. 

PDF Download: Cisco Security Advisory

References 

• Cisco Security Advisories (June 18th, 2025). Retrieved from Cisco. https://sec.cloudapps.cisco.com/security/center/publicationListing.x  

• Cisco Security Advisory. (June 18th, 2025). Retrieved from Canadian Centre for Cyber Security. https://sec.cloudapps.cisco.com/security/center/publicationListing.x