Summary: Cisco has released patches for 10 vulnerabilities in IOS XR, including five critical issues that could lead to denial-of-service (DoS) conditions on specific routers. The most severe involve IPv4 access control lists and quality of service policies, which could be exploited to cause network disruptions. Additionally, other high-severity vulnerabilities could allow unauthorized command execution and bypass critical security features.
Affected: Cisco IOS XR routers (ASR 9000 series, ASR 9902, ASR 9903) and related functionalities
Keypoints :
- Five critical vulnerabilities identified that could lead to DoS conditions, including CVE-2025-20142 and CVE-2025-20146.
- High-severity vulnerabilities also found in IKEv2 function and packet handling that can cause DoS.
- Additional serious bugs allow elevated command execution and bypass of Secure Boot and image signature verification.
- No exploitation of these vulnerabilities is reported in the wild as of now.
Source: https://www.securityweek.com/cisco-patches-10-vulnerabilities-in-ios-xr/
Views: 22