CVE-2025-20191Buffer Access with Incorrect Length Value in Cisco Nx-os Software

CWE-805Buffer Access with Incorrect Length Value4 documents4 sources
Severity
7.4HIGHNVD
EPSS
0.1%
top 73.11%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco Nx-os SoftwareCisco Wireless LAN Controller
Timeline
PublishedMay 7

Description

A vulnerability in the Switch Integrated Security Features (SISF) of Cisco IOS Software, Cisco IOS XE Software, Cisco NX-OS Software, and Cisco Wireless LAN Controller (WLC) AireOS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to the incorrect handling of DHCPv6 packets. An attacker could exploit this vulnerability by sending a crafted DHCPv6 packet to an affected device. A successful expl

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:HExploitability: 2.8 | Impact: 4.0

Affected Packages2 packages

CVEListV5cisco/cisco_nx-os_software119 versions+118
CVEListV5cisco/cisco_wireless_lan_controller84 versions+83

🔴Vulnerability Details

2
GHSA
GHSA-vx24-6mq3-c5cq: A vulnerability in the Switch Integrated Security Features (SISF) of Cisco IOS Software, Cisco IOS XE Software, Cisco NX-OS Software, and Cisco Wirele2025-05-07
CVEList
Multiple Cisco Products Denial of Service Vulnerability2025-05-07

📋Vendor Advisories

1
Cisco
Multiple Cisco Products Switch Integrated Security Features DHCPv6 Denial of Service Vulnerability2025-05-07
CVE-2025-20191 — Cisco Nx-os Software vulnerability | cvebase