CVE-2025-20117 — Command Injection in Cisco Application Policy Infrastructure Controller

CWE-77 — Command Injection CWE-79 — Cross-site Scripting4 documents4 sources

Severity

6.7MEDIUMNVD

CNA5.1

EPSS

0.0%

top 92.76%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Application Policy Infrastructure Controller Cisco Application Policy Infrastructure Controller

Timeline

PublishedFeb 26

Description

A vulnerability in the CLI of Cisco APIC could allow an authenticated, local attacker to execute arbitrary commands as root on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is due to insufficient validation of arguments that are passed to specific CLI commands. An attacker could exploit this vulnerability by including crafted input as the argument of an affected CLI command. A suc…

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

Affected Packages2 packages

▶NVDcisco/application_policy_infrastructure_controller128 versions+127

▶CVEListV5cisco/cisco_application_policy_infrastructure_controller128 versions+127

🔴Vulnerability Details

GHSA

GHSA-fj42-7xm3-95v2: A vulnerability in the CLI of Cisco APIC could allow an authenticated, local attacker to execute arbitrary commands as root on the underlying operatin↗2025-02-26

▶

CVEList

Cisco Application Policy Infrastructure Controller Authenticated Command Injection Vulnerability↗2025-02-26

▶

📋Vendor Advisories

Cisco

Cisco Application Policy Infrastructure Controller Vulnerabilities↗2025-02-26

▶