CVE-2025-20141

CVE Database · CVE-2025-20141

CVE-2025-20141

· HIGHAnalyzed

CVSS v3.1

7.4

EPSS

0.23%

Published

Mar 12, 2025

Modified

Aug 6, 2025

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A vulnerability in the handling of specific packets that are punted from a line card to a route processor in Cisco IOS XR Software Release 7.9.2 could allow an unauthenticated, adjacent attacker to cause control plane traffic to stop working on multiple Cisco IOS XR platforms.  This vulnerability is due to incorrect handling of packets that are punted to the route processor. An attacker could exploit this vulnerability by sending traffic, which must be handled by the Linux stack on the route processor, to an affected device. A successful exploit could allow the attacker to cause control plane traffic to stop working, resulting in a denial of service (DoS) condition.

CVSS Vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Weaknesses (CWE)

CWE-770

Affected Products (47)

cisco · ios_xrvulnerable

cisco · ncs_540-12z20g-sys-a

cisco · ncs_540-12z20g-sys-d

cisco · ncs_540-24q2c2dd-sys

cisco · ncs_540-24q8l2dd-sys

cisco · ncs_540-24z8q2c-sys

cisco · ncs_540-28z4c-sys-a

cisco · ncs_540-28z4c-sys-d

cisco · ncs_540-6z14s-sys-d

cisco · ncs_540-6z18g-sys-a

cisco · ncs_540-6z18g-sys-d

cisco · ncs_540-acc-sys

cisco · ncs_540-fh-agg

References (2)

https://blog.apnic.net/2024/09/02/crafting-endless-as-paths-in-bgp/

Product

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-xr792-bWfVDPY

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs