Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
277
Views
1
Helpful
2
Replies

Cisco ASA Devices — Vulnerability Impact and Upgrade Clarification

Go to solution
saba53
Level 1
Level 1

‎09-30-2025 04:02 AM

Hello,

We have seen that Cisco devices are affected by the vulnerability described here: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-webvp…

and here: https://thehackernews.com/2025/09/urgent-cisco-asa-zero-day-duo-under.html

In our infrastructure we are using the following devices:

  • Cisco ASA 5585-SSP-60 — ASA Version: 9.12(4)7
  • Cisco ASA 5555 — ASA Version: 9.14(4)23

We would like to know whether our Cisco devices are affected by this vulnerability and what is required to mitigate it.

If a version upgrade is required, please specify to which version we can or should upgrade, or whether it is possible at all to upgrade these devices to the necessary version(s).

Additionally, we are interested in what kinds of changes occur if we upgrade to ASA Version 9.16. For example, is it possible that algorithms such as MD5, DH2, and similar ciphers would be removed and that we would be forced to replace them with other algorithms?

Please help us with this matter,
Thank you in advance.

1 person had this problem
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎09-30-2025 09:16 AM

Both of those models are well past their last date of support and thus patches are not available for them.

End of software maintenance for the ASA 5555-X was September 2021; but Cisco did release a few interim updates after that date - the last one was in April 2024 though. (End of Sales was September 2020 for the 5555-X)

The 5585-X was end of support even earlier - the original announcement is aged out of the Cisco listing!

View solution in original post

2 Replies 2

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎09-30-2025 09:16 AM

Both of those models are well past their last date of support and thus patches are not available for them.

End of software maintenance for the ASA 5555-X was September 2021; but Cisco did release a few interim updates after that date - the last one was in April 2024 though. (End of Sales was September 2020 for the 5555-X)

The 5585-X was end of support even earlier - the original announcement is aged out of the Cisco listing!

Go to solution
saba53
Level 1
Level 1
In response to Marvin Rhoads

‎09-30-2025 11:36 PM

Thanks so much for your help!

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card