CVE-2025-20169Buffer Access with Incorrect Length Value in Cisco IOS XE Software

CWE-805Buffer Access with Incorrect Length ValueCWE-400Uncontrolled Resource Consumption5 documents5 sources
Severity
7.7HIGHNVD
EPSS
0.5%
top 32.58%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Cisco IOS XE SoftwareCisco IOSCisco IOS XE
Timeline
PublishedFeb 5

Description

A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper error handling when parsing SNMP requests. An attacker could exploit this vulnerability by sending a crafted SNMP request to an affected device. A successful exploit could allow the attacker to cause the device to reload unexpectedly, resulting in a DoS condition. This vulnerabili

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:HExploitability: 3.1 | Impact: 4.0

Affected Packages4 packages

CVEListV5cisco/cisco_ios_xe_software446 versions+445
CVEListV5cisco/ios2949 versions+2948
NVDcisco/ios2949 versions+2948
NVDcisco/ios_xe446 versions+445

🔴Vulnerability Details

2
GHSA
GHSA-wpp5-72vx-9m3v: A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause a DoS con2025-02-05
CVEList
CVE-2025-20169: A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause a DoS con2025-02-05

📋Vendor Advisories

2
Cisco
Cisco IOS, IOS XE, and IOS XR Software SNMP Denial of Service Vulnerabilities2025-02-05
Microsoft
An issue was discovered in the Linux kernel before 4.19.9. The USB subsystem mishandles size checks during the reading of an extra descriptor related to __usb_get_extra_descriptor in drivers/usb/core/2018-12-11
CVE-2025-20169 — Cisco IOS XE Software vulnerability | cvebase