Cisco security advisory (AV25-356)

Serial number: AV25-356
Date: June 18, 2025

On June 18, 2025, Cisco published security advisories to address vulnerabilities in the following products:

Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway – multiple models
Secure Endpoint Connector for Linux – versions prior to 1.26.1
Secure Endpoint Connector for Mac – versions prior to 1.26.1
Secure Endpoint Connector for Windows – versions prior to 7.5.21 and 8.4.5
Secure Endpoint Private Cloud – versions prior to 4.2.2

The Cyber Centre encourages users and administrators to review the provided web links, perform the suggested mitigations and apply the necessary updates if available.

ClamAV UDF File Parsing Out-of-Bounds Read Information Disclosure Vulnerability
Cisco Meraki MX and Z Series AnyConnect VPN with Client Certificate Authentication Denial of Service Vulnerability
Cisco Security Advisories

Date modified:: 2025-06-18

Language selection

Search

Cisco security advisory (AV25-356)