Ref# ADV2025_287 | Date: Aug 20th 2025

---

Cisco has published a security advisory highlighting vulnerabilities in the following products on August 20th, 2025. It is recommended that you take the necessary precautions by ensuring your products are always updated. 

• Cisco Duo Authentication Proxy – version 5.8.2 and prior and version 6.5.1 and prior 
• Cisco Evolved Programmable Network Manager (EPNM) – version 7.1 and prior, versions 8.0 and 8.1 
• Cisco Prime Infrastructure – version 3.9 and prior and version 3.10 
• Cisco Identity Services Engine (ISE) – version 3.1 and prior, versions 3.2 and 3.3 

For more information on these updates, you can follow these URLs: 

• Cisco Duo Authentication Proxy Information Disclosure Vulnerability 

• Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Sensitive Information Disclosure Vulnerability 

• Cisco Identity Services Engine Arbitrary File Upload Vulnerability 

• Cisco Security Advisories 

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary. 

PDF Download: Cisco Security Advisory

References 

• Cisco Security Advisories. (August 20th, 2025). Retrieved from Cisco. https://tools.cisco.com/security/center/publicationListing.x  

• Cisco Security Advisory. (August 20th, 2025). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/cisco-security-advisory-av25-532