Cisco has released security updates to address vulnerabilities in multiple Cisco products, including but not limited to:

1. Cisco BroadWorks

2. Cisco Meeting Management

3. ClamAV

These updates specifically target critical vulnerabilities identified as CVE-2025-20156, CVE-2025-20165, and CVE-2025-20128.

Security Risks

If successfully exploited, the identified vulnerabilities in Cisco products could enable an attacker to take control of an affected system and carry out malicious activities.

For the full list of security patches released by Cisco, please refer to Cisco Security Advisories.

Recommended Actions

The National Cyber Security Authority (NCSA) recommends users and system administrators to:

1. Follow and put in place the security updates shared by Cisco to lower the risk of vulnerability exploitation.

2. Apply the required and latest security updates as soon as possible.

The released software versions for upgrade include, but are not limited to:

• Cisco BroadWorks: Upgrade to version RI.2024.11 or above.

• Cisco Meeting Management: Upgrade to version 3.9.1 or above.

• ClamAV: Upgrade to versions 1.4.2 and 1.0.8 or above.

3. Before updating or patching, please ensure that you have the latest backup that can easily be restored.

For further information and support, please contact the National Cyber Security Authority (NCSA) by email to rwcsirt@ncsa.gov.rw or call us on 9009.

References

• Cisco Meeting Management REST API Privilege Escalation Vulnerability

• Cisco BroadWorks SIP Denial of Service Vulnerability

• https://sec.cloudapps.cisco.com/security/center/publicationListing.x