CVE-2025-20209

CWE-770Allocation without Limits4 documents4 sources
Severity
7.5HIGH
EPSS
0.3%
top 47.85%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco Cisco IOS XR SoftwareCisco IOS XR
Timeline
PublishedMar 12

Description

A vulnerability in the Internet Key Exchange version 2 (IKEv2) function of Cisco IOS XR Software could allow an unauthenticated, remote attacker to prevent an affected device from processing any control plane UDP packets. This vulnerability is due to improper handling of malformed IKEv2 packets. An attacker could exploit this vulnerability by sending malformed IKEv2 packets to an affected device. A successful exploit could allow the attacker to prevent the affected device from processing any co

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

CVEListV5cisco/cisco_ios_xr_software40 versions+39
NVDcisco/ios_xr40 versions+39

🔴Vulnerability Details

2
GHSA
GHSA-f769-hvjj-2wv2: A vulnerability in the Internet Key Exchange version 2 (IKEv2) function of Cisco IOS XR Software could allow an unauthenticated, remote attacker to pr2025-03-12
CVEList
Cisco IOS XR Software Internet Key Exchange Version 2 Denial of Service Vulnerability2025-03-12

📋Vendor Advisories

1
Cisco
Cisco IOS XR Software Internet Key Exchange Version 2 Denial of Service Vulnerability2025-03-12