Accessibility Options |  Sitemap |  Contact Us
   
 
 
 
HOME space ABOUTCERTIn space KNOWLEDGEBASE space TRAINING space ADVISORIES space VULNOTES space space Facebook space x space insta space youtube space Linkedin
WLine
DigitalIndia
WLine
csk
WLine
Full Member FIRST
Line
Operational Member TFCSIRT
Line
Accredited Member APCERT
Line
Global Research Partner APWG
Line
Associate Partner Charter
Line
CNA
WLine
 Directions by CERT-In under  Section 70B, Information  Technology Act 2000
WLine
 Guidelines on Information  Security Practices for  Government Entities
WLine
 15 Elemental Cyber NEW
 Defense Controls for Micro,
 Small, and Medium Enterprises
 (MSMEs)
WLine
 Technical Guidelines on NEW  SBOM, QBOM & CBOM, AIBOM
 and HBOM Version 2.0
WLine
 Cyber Security GuidelinesNEW
 for Smart City Infrastructure
About CERT-in
Line
point point Client's /Citizen's Charter
Line
point point Roles & Functions
Line
point point Advisory Committee
Line
point point Act/Rules/Regulations
Line
point point Internal Complaint Committee         (ICC) 
Line
point point RFC2350 
line
point point Press  
Line
point point Tender 
Line
point point Subscribe Mailing List
Line
point point Contact Us
Line
Line
Reporting
point
 Incident Reporting
point
Line
point
 Vulnerability Reporting
point
Line
point
 Feedback
point
Line
KnowledgeBase
Line
point Point Guidelines
Line
point Point Presentations
Line
point Point White Papers 
Line
point Point Annual Report 
Line
Line
Line
line
Line
line
line
Advisories
Line
VulnerabilityNotes
Line
RelatedLinks
Line
point Point World CERTs
Line
point point Antivirus Resources
line
point point FAQ
line
line
Line
Line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
spacer
Home - Vulnerability NotesPrint
point
CERT-In Vulnerability Note CIVN-2025-0098
Multiple Vulnerabilities in Cisco Products

Original Issue Date:May 16, 2025

Severity Rating: CRITICAL

Software Affected

  • Cisco IOS , IOS XR, IOS XE and NX-OS Software
  • Cisco ASA(Adaptive Security Appliance) software
  • Cisco Firepower Threat Defense (FTD) Software
  • Cisco Catalyst SD-WAN Manager
  • Cisco Wireless LAN Controller (WLC) AireOS Software

Overview

Multiple Vulnerabilities have been reported in Cisco products which could allow the attacker to elevate privileges and cause Denial of service (DoS) condition on targeted systems.

Target Audience:
All organizations and individuals using Cisco products.

Risk Assessment:
High risks to confidentiality, integrity and availability of the systems.

Impact Assessment:
Potential for privilege escalation and service unavailability.

Description

Cisco Systems is a multinational technology company known for its networking hardware, software, and cybersecurity solutions.

1. Privilege escalation vulnerabilities ( CVE-2025-20197   CVE-2025-20198   CVE-2025-20199   CVE-2025-20200   CVE-2025-20201   )

These vulnerabilities exist in the CLI of Cisco IOS XE Software due to insufficient input validation when processing specific configuration commands. An attacker could exploit these vulnerabilities by including crafted input in specific configuration commands. 
Successful exploitation of these vulnerabilities could allow the attacker to elevate privileges to root on the underlying operating system of an affected device.

2. Denial of Service Vulnerability ( CVE-2025-20182   )

A vulnerability exists in the Internet Key Exchange version 2 (IKEv2) protocol processing of Cisco Adaptive Security Appliance (ASA) Software, Cisco Firepower Threat Defense (FTD) Software, Cisco IOS Software, and Cisco IOS XE Software due to insufficient input validation when processing IKEv2 messages. An attacker could exploit this vulnerability by sending crafted IKEv2 traffic to an affected device.
Successful exploitation of this vulnerability could allow the attacker to cause the device to reload, resulting in a Denial of service (DoS) condition on the affected device.

3. Privilege Escalation Vulnerability ( CVE-2025-20122   )

A vulnerability exists in the CLI of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage due to insufficient input validation. An attacker could exploit this vulnerability by sending a crafted request to the CLI of the SD-WAN Manager.
Successful exploitation of this vulnerability could allow the attacker to gain root privileges on the underlying operating system.

4. Denial of Service Vulnerability ( CVE-2025-20191   )

A vulnerability exists in the Switch Integrated Security Features (SISF) of Cisco IOS Software, Cisco IOS XE Software, Cisco NX-OS Software, and Cisco Wireless LAN Controller (WLC) AireOS Software due to the incorrect handling of DHCPv6 packets. An attacker could exploit this vulnerability by sending a crafted DHCPv6 packet to an affected device.
Successful exploitation of this vulnerability could allow the attacker to cause the device to reload, resulting in a Denial of service (DoS) condition.

5. Denial of Service Vulnerability ( CVE-2025-20154   )

A vulnerability exists in the Two-Way Active Measurement Protocol (TWAMP) server feature of Cisco IOS Software and Cisco IOS XE Software  due to out-of-bounds array access when processing specially crafted TWAMP control packets. An attacker could exploit this vulnerability by sending crafted TWAMP control packets to an affected device.
Successful exploitation of this vulnerability could allow the attacker to cause the affected device to reload, resulting in a Denial of service (DoS) condition.

Solution

Apply appropriate updates as mentioned in:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-privesc-su7scvdp

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-multiprod-ikev2-dos-gPctUqv2

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-priviesc-WCk7bmmt

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sisf-dos-ZGwt4DdY

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-twamp-kV4FHugn

Vendor Information

Cisco
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-privesc-su7scvdp
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-multiprod-ikev2-dos-gPctUqv2
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-priviesc-WCk7bmmt
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sisf-dos-ZGwt4DdY
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-twamp-kV4FHugn

References

Cisco
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-privesc-su7scvdp
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-multiprod-ikev2-dos-gPctUqv2
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-priviesc-WCk7bmmt
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sisf-dos-ZGwt4DdY
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-twamp-kV4FHugn

CVE Name
CVE-2025-20197
CVE-2025-20198
CVE-2025-20199
CVE-2025-20200
CVE-2025-20201
CVE-2025-20182
CVE-2025-20122
CVE-2025-20191
CVE-2025-20154

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Contact Information

Email: info@cert-in.org.in
Phone: +91-11-22902657

Postal address

Indian Computer Emergency Response Team (CERT-In)
Ministry of Electronics and Information Technology
Government of India
Electronics Niketan
6, CGO Complex, Lodhi Road,
New Delhi - 110 003
India

 
Indian Computer Emergency Response Team - CERT-In, Ministry of Electronics and Information Technology, Government of India.
Website Policies |  Terms of Use |  Help Last Updated On September 02, 2025