Main Vulnerability Database SB2025092462

SB2025092462 - Authenticated code execution in Cisco IOS and IOS XE SNMP implementation

Published: September 24, 2025 Updated: September 25, 2025

Security Bulletin ID SB2025092462

Severity

High

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Stack-based buffer overflow (CVE-ID: CVE-2025-20352)

The vulnerability allows a remote user to compromise the affected system.

The vulnerability exists due to a boundary error within the SNMP subsystem. A remote privileged user can send specially crafted SNMP packets to the affected device, trigger a stack-based buffer overflow and execute arbitrary code with root privileges.

Note, the vulnerability is being actively exploited in the wild.

Remediation

Install update from vendor's website.

References

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snmp-x4LPhte
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwq31287