Ce mail provient de l'extérieur, restons vigilants

=====================================================================

                            CERT-Renater

                Note d'Information No. 2025/VULN600
_____________________________________________________________________

DATE                : 10/09/2025

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Cisco IOS XR.

=====================================================================
https://sec.cloudapps.cisco.com/security/center/publicationListing.x
_____________________________________________________________________

 Below is the list of Cisco Security Advisories published by Cisco
PSIRT on 2025-September-10.

The following PSIRT security advisories (2 High, 1 Medium) were
published at 16:00 UTC today.


Table of Contents:

1) Cisco IOS XR ARP Broadcast Storm Denial of Service Vulnerability
- SIR: High

2) Cisco IOS XR Software Image Verification Bypass Vulnerability
- SIR: High

3) Cisco IOS XR Software Management Interface ACL Bypass Vulnerability
- SIR: Medium

+--------------------------------------------------------------------

1) Cisco IOS XR ARP Broadcast Storm Denial of Service Vulnerability

CVE-2025-20340

SIR: High

CVSS Score v(3.1): 7.4

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxr-arp-storm-EjUU55yM ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxr-arp-storm-EjUU55yM"]

+--------------------------------------------------------------------

2) Cisco IOS XR Software Image Verification Bypass Vulnerability

CVE-2025-20248

SIR: High

CVSS Score v(3.1): 6.0

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-xrsig-UY4zRUCG ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-xrsig-UY4zRUCG"]

+--------------------------------------------------------------------

3) Cisco IOS XR Software Management Interface ACL Bypass
Vulnerability

CVE-2025-20159

SIR: Medium

CVSS Score v(3.1): 5.3

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-acl-packetio-Swjhhbtz ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-acl-packetio-Swjhhbtz"]

=========================================================
+ CERT-RENATER        |    tel : 01-53-94-20-44         +
+ 23/25 Rue Daviel    |    fax : 01-53-94-20-41         +
+ 75013 Paris         |   email:cert@support.renater.fr +
=========================================================