Security updates: Root and DoS attacks on Cisco products possible

Because Cisco's network operating system IOS XE has several security vulnerabilities, attackers can attack various devices. After successful attacks, they can acquire higher user rights, for example.

Root attacks

A "critical" vulnerability (CVE-2025-20188) with the highest score (CVSS score 10 out of 10) is considered particularly dangerous. At this point, a remote attacker without authentication can use prepared HTTPS requests to target the vulnerability in the image download feature of the out-of-band access point of various wireless controllers in order to execute malicious code. In order for attackers to exploit the vulnerability, the download feature must be enabled, which should not be the case by default.

The reason for the vulnerability is a hardcoded JSON web token. If attacks are successful, an attacker can execute their own code with root privileges. Various wireless controllers are affected, which the network supplier lists in a warning message. After a successful attack, devices are very likely to be completely compromised.

Even more vulnerabilities

Various routers and switches are also vulnerable. For example, attackers can manipulate the boot process of Catalyst 2960X, 2960XR, 2960CX and 3560CX switches and execute their own code(CVE-2025-20181 "high").

Among other things, Integrated Service Routers of the 1100 series are susceptible to DoS attacks. Remote attackers can use special DHCP requests to restart systems without logging in(CVE-2025-20162 "high").

Cisco lists the other products at risk and the available security updates in the security section of its website.

(des)