Cisco IOS XE vulnerabilities

CVE-2025-20293 Cisco IOS XE Software for Catalyst 9800 Series Wireless Controller for Cloud Unauthenticated Access to Certificate Enrollment Service Vulnerability CVE-2025-20293: Cisco IOS XE Software for Catalyst 9800 Series Wireless Controller for Cloud Unauthenticated Access to Certificate Enrollment Service Vulnerability A vulnerability in the Day One setup process of Cisco IOS XE Software for Catalyst 9800 Series Wireless Controllers for Cloud (9800-CL) could allow an unauthenticated, remot

CVE-2020-3480 Cisco IOS XE Software Zone-Based Firewall Denial of Service Vulnerabilities CVE-2020-3480: Cisco IOS XE Software Zone-Based Firewall Denial of Service Vulnerabilities Multiple vulnerabilities in the Zone-Based Firewall feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload or stop forwarding traffic through the firewall. The vulnerabilities are due to incomplete handling of Layer 4 packets through the device. An attacker could

CVE-2018-0123 Cisco IOS XE Software Diagnostic Shell Path Traversal Vulnerability CVE-2018-0123: Cisco IOS XE Software Diagnostic Shell Path Traversal Vulnerability A vulnerability in the diagnostic shell for Cisco IOS XE Software could allow an authenticated, local attacker to use certain diagnostic shell commands that can overwrite system files. These system files may be sensitive and should not be able to be overwritten by a user of the diagnostic shell. The vulnerability is due to lack of pr

CVE-2026-20115 Cisco IOS XE Software Secure Channel for Meraki Information Disclosure Vulnerability CVE-2026-20115: Cisco IOS XE Software Secure Channel for Meraki Information Disclosure Vulnerability A vulnerability in Cisco IOS XE Software for Cisco Meraki could allow a remote, unauthenticated attacker to view confidential device information. This vulnerability is due to a device configuration upload being performed over an insecure tunnel. An attacker could exploit this vulnerability by condu

CVE-2025-20313 Cisco IOS XE Software Secure Boot Bypass Vulnerabilities CVE-2025-20313: Cisco IOS XE Software Secure Boot Bypass Vulnerabilities Multiple vulnerabilities in Cisco IOS XE Software could allow an authenticated, local attacker with level-15 privileges or an unauthenticated attacker with physical access to an affected device to execute persistent code at boot time and break the chain of trust. These vulnerabilities are due improper validation of software packages. An attacker could e

CVE-2017-6795 Cisco IOS XE Software for Cisco ASR 920 Series Routers Arbitrary File Overwrite Vulnerability CVE-2017-6795: Cisco IOS XE Software for Cisco ASR 920 Series Routers Arbitrary File Overwrite Vulnerability A vulnerability in the USB-modem code of Cisco IOS XE Software running on Cisco ASR 920 Series Aggregation Services Routers could allow an authenticated, local attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to

CVE-2025-20314 Cisco IOS XE Software Secure Boot Bypass Vulnerabilities CVE-2025-20314: Cisco IOS XE Software Secure Boot Bypass Vulnerabilities Multiple vulnerabilities in Cisco IOS XE Software could allow an authenticated, local attacker with level-15 privileges or an unauthenticated attacker with physical access to an affected device to execute persistent code at boot time and break the chain of trust. These vulnerabilities are due improper validation of software packages. An attacker could e

CVE-2025-20192 Cisco IOS XE Software Internet Key Exchange Version 1 Denial of Service Vulnerability CVE-2025-20192: Cisco IOS XE Software Internet Key Exchange Version 1 Denial of Service Vulnerability A vulnerability in the Internet Key Exchange version 1 (IKEv1) implementation of Cisco IOS XE Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition. The attacker must have valid IKEv1 VPN credentials to exploit this vulnerability. This vulnerability i

CVE-2019-12670 Cisco IOS XE Software IOx Guest Shell Namespace Protection Vulnerability CVE-2019-12670: Cisco IOS XE Software IOx Guest Shell Namespace Protection Vulnerability A vulnerability in the filesystem of Cisco IOS XE Software could allow an authenticated, local attacker within the IOx Guest Shell to modify the namespace container protections on an affected device. The vulnerability is due to insufficient file permissions. An attacker could exploit this vulnerability by modifying files

CVE-2015-6359 Cisco IOS XE Software IPv6 Neighbor Discovery Denial of Service Vulnerability CVE-2015-6359: Cisco IOS XE Software IPv6 Neighbor Discovery Denial of Service Vulnerability A vulnerability in the IPv6 neighbor discovery (ND) handling of Cisco IOS XE Software on ASR platforms could allow an unauthenticated, adjacent attacker to cause an affected device to crash. The vulnerability is due to insufficient bounds on internal tables. An attacker could exploit this vulnerability by flooding

CVE-2026-20004 Cisco IOS XE Software TLS Memory Exhaustion Denial of Service Vulnerability CVE-2026-20004: Cisco IOS XE Software TLS Memory Exhaustion Denial of Service Vulnerability A vulnerability in the TLS library of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to exhaust the available memory of an affected device. This vulnerability is due to improper management of memory resources during TLS connection setup. An attacker could exploit this vulnerability by repeat

CVE-2019-12672 Cisco IOS XE Software Arbitrary Code Execution Vulnerability CVE-2019-12672: Cisco IOS XE Software Arbitrary Code Execution Vulnerability A vulnerability in the filesystem of Cisco IOS XE Software could allow an authenticated, local attacker with physical access to an affected device to execute arbitrary code on the underlying operating system (OS) with root privileges. The vulnerability is due to insufficient file location validation. An attacker could exploit this vulnerability

CVE-2020-3423 Cisco IOS XE Software Arbitrary Code Execution Vulnerability CVE-2020-3423: Cisco IOS XE Software Arbitrary Code Execution Vulnerability A vulnerability in the implementation of the Lua interpreter that is integrated in Cisco IOS XE Software could allow an authenticated, local attacker to execute arbitrary code with root privileges on the underlying Linux operating system (OS) of an affected device. The vulnerability is due to insufficient restrictions on Lua function calls within

CVE-2018-0169 Cisco IOS XE Software User EXEC Mode Root Shell Access Vulnerabilities CVE-2018-0169: Cisco IOS XE Software User EXEC Mode Root Shell Access Vulnerabilities Multiple vulnerabilities in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to gain access to the underlying Linux shell of an affected device and execute arbitrary commands with root privileges on the device. The vulnerabilities are due to the affected software improperly sanitizing command

CVE-2026-20104 Cisco IOS XE Software for Cisco Catalyst and Rugged Series Switches Secure Boot Bypass Vulnerability CVE-2026-20104: Cisco IOS XE Software for Cisco Catalyst and Rugged Series Switches Secure Boot Bypass Vulnerability A vulnerability in the bootloader of Cisco IOS XE Software for Cisco Catalyst 9200 Series Switches, Cisco Catalyst ESS9300 Embedded Series Switches, Cisco Catalyst IE9310 and IE9320 Rugged Series Switches, and Cisco IE3500 and IE3505 Rugged Series Switches could allo

CVE-2026-20084 Cisco IOS XE Software for Catalyst 9000 Series Switches DHCP Snooping Denial of Service Vulnerability CVE-2026-20084: Cisco IOS XE Software for Catalyst 9000 Series Switches DHCP Snooping Denial of Service Vulnerability A vulnerability in the DHCP snooping feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause BOOTP packets to be forwarded between VLANs, resulting in a denial of service (DoS) condition. This vulnerability is due to improper handl

CVE-2022-20837 Cisco IOS XE Software DNS NAT Protocol Application Layer Gateway Denial of Service Vulnerability CVE-2022-20837: Cisco IOS XE Software DNS NAT Protocol Application Layer Gateway Denial of Service Vulnerability A vulnerability in the DNS application layer gateway (ALG) functionality that is used by Network Address Translation (NAT) in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability is due to a logic err

CVE-2020-3476 Cisco IOS XE Software Arbitrary File Overwrite Vulnerability CVE-2020-3476: Cisco IOS XE Software Arbitrary File Overwrite Vulnerability A vulnerability in the CLI implementation of a specific command of Cisco IOS XE Software could allow an authenticated, local attacker to overwrite arbitrary files in the underlying host file system. The vulnerability is due to insufficient validation of the parameters of a specific CLI command. An attacker could exploit this vulnerability by issui

CVE-2020-3475 Cisco IOS XE Software Web Management Framework Vulnerabilities CVE-2020-3475: Cisco IOS XE Software Web Management Framework Vulnerabilities Multiple vulnerabilities in the web management framework of Cisco IOS XE Software could allow an authenticated, remote attacker with read-only privileges to gain unauthorized read access to sensitive data or cause the web management software to hang or crash, resulting in a denial of service (DoS) condition. For more information about these v

CVE-2022-20915 Cisco IOS XE Software IPv6 VPN over MPLS Denial of Service Vulnerability CVE-2022-20915: Cisco IOS XE Software IPv6 VPN over MPLS Denial of Service Vulnerability A vulnerability in the implementation of IPv6 VPN over MPLS (6VPE) with Zone-Based Firewall (ZBFW) of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper error handling of an IPv6 packet that is fo