Ce mail provient de l'extérieur, restons vigilants

=====================================================================

                            CERT-Renater

                Note d'Information No. 2025/VULN642
_____________________________________________________________________

DATE                : 25/09/2025

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Cisco IOS XE, Cisco Access Point Software,
                      Cisco Wireless Access Point Software.

=====================================================================
https://sec.cloudapps.cisco.com/security/center/publicationListing.x
_____________________________________________________________________

Below is the list of Cisco Security Advisories published by Cisco
PSIRT on 2025-September-24.

The following PSIRT security advisories (8 High, 8 Medium) were
published at 16:00 UTC today.

Table of Contents:

1) Cisco IOS XE Software HTTP API Command Injection Vulnerability -
SIR: High

2) Cisco IOS XE Software Network-Based Application Recognition Denial
of Service Vulnerability - SIR: High

3) Cisco IOS and IOS XE Software SNMP Denial of Service and Remote
Code Execution Vulnerability - SIR: High

4) Cisco IOS Software Industrial Ethernet Switch Device Manager
Denial of Service Vulnerability - SIR: High

5) Cisco IOS XE Software Simple Network Management Protocol Denial
of Service Vulnerability - SIR: High

6) Cisco IOS and IOS XE Software TACACS+ Authentication Bypass
Vulnerability - SIR: High

7) Cisco IOS XE Software Secure Boot Bypass Vulnerabilities - SIR:
High

8) Cisco IOS XE Software for Catalyst 9000 Series Switches Denial of
Service Vulnerability - SIR: High

9) Cisco IOS and IOS XE Software CLI Denial of Service Vulnerability
- SIR: Medium

10) Cisco SD-WAN vEdge Software Access Control List Bypass
Vulnerability - SIR: Medium

11) Cisco IOS XE Software CLI Argument Injection Vulnerability -
SIR: Medium

12) Cisco IOS XE Software Web UI Reflected Cross-Site Scripting
Vulnerability - SIR: Medium

13) Cisco IOS XE Software on Cisco Catalyst 9500X and 9600X Serie
 Switches Virtual Interface Access Control List Bypass
Vulnerability - SIR: Medium

14) Cisco IOS XE Software for Catalyst 9800 Series Wireless
Controller for Cloud Unauthenticated Access to Certificate
Enrollment Service Vulnerability - SIR: Medium

15) Cisco Access Point Software Intermittent IPv6 Gateway Change
Vulnerability - SIR: Medium

16) Cisco Wireless Access Point Software Device Analytics Action
Frame Injection Vulnerability - SIR: Medium

+--------------------------------------------------------------------

1) Cisco IOS XE Software HTTP API Command Injection Vulnerability

CVE-2025-20334

SIR: High

CVSS Score v(3.1): 8.8

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-xe-cmd-inject-rPJM8BGL ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-xe-cmd-inject-rPJM8BGL"]

+--------------------------------------------------------------------

2) Cisco IOS XE Software Network-Based Application Recognition
Denial of Service Vulnerability

CVE-2025-20315

SIR: High

CVSS Score v(3.1): 8.6

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nbar-dos-LAvwTmeT ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nbar-dos-LAvwTmeT"]

+--------------------------------------------------------------------

3) Cisco IOS and IOS XE Software SNMP Denial of Service and Remote
Code Execution Vulnerability

CVE-2025-20352

SIR: High

CVSS Score v(3.1): 7.7

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snmp-x4LPhte ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snmp-x4LPhte"]

+--------------------------------------------------------------------

4) Cisco IOS Software Industrial Ethernet Switch Device Manager
Denial of Service Vulnerability

CVE-2025-20327

SIR: High

CVSS Score v(3.1): 7.7

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-invalid-url-dos-Nvxszf6u ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-invalid-url-dos-Nvxszf6u"]

+--------------------------------------------------------------------

5) Cisco IOS XE Software Simple Network Management Protocol Denial
of Service Vulnerability

CVE-2025-20312

SIR: High

CVSS Score v(3.1): 7.7

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snmpwred-x3MJyf5M ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snmpwred-x3MJyf5M"]

+--------------------------------------------------------------------

6) Cisco IOS and IOS XE Software TACACS+ Authentication Bypass
Vulnerability

CVE-2025-20160

SIR: High

CVSS Score v(3.1): 8.1

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-tacacs-hdB7thJw ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-tacacs-hdB7thJw"]

+--------------------------------------------------------------------

7) Cisco IOS XE Software Secure Boot Bypass Vulnerabilities

CVE-2025-20313, CVE-2025-20314

SIR: High

CVSS Score v(3.1): 6.7

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-secboot-UqFD8AvC ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-secboot-UqFD8AvC"]

+--------------------------------------------------------------------

8) Cisco IOS XE Software for Catalyst 9000 Series Switches Denial
of Service Vulnerability

CVE-2025-20311

SIR: High

CVSS Score v(3.1): 7.4

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cat9k-PtmD7bgy ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cat9k-PtmD7bgy"]

+--------------------------------------------------------------------

9) Cisco IOS and IOS XE Software CLI Denial of Service
Vulnerability

CVE-2025-20149

SIR: Medium

CVSS Score v(3.1): 6.5

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-cli-EB7cZ6yO ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-cli-EB7cZ6yO"]

+--------------------------------------------------------------------

10) Cisco SD-WAN vEdge Software Access Control List Bypass
Vulnerability

CVE-2025-20339

SIR: Medium

CVSS Score v(3.1): 5.8

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-defaultacl-pSJk9nVF ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-defaultacl-pSJk9nVF"]

+--------------------------------------------------------------------

11) Cisco IOS XE Software CLI Argument Injection Vulnerability

CVE-2025-20338

SIR: Medium

CVSS Score v(3.1): 6.0

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-arg-inject-EyDDbh4e ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-arg-inject-EyDDbh4e"]

+--------------------------------------------------------------------

12) Cisco IOS XE Software Web UI Reflected Cross-Site Scripting
Vulnerability

CVE-2025-20240

SIR: Medium

CVSS Score v(3.1): 6.1

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webui-xss-VWyDgjOU ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webui-xss-VWyDgjOU"]

+--------------------------------------------------------------------

13) Cisco IOS XE Software on Cisco Catalyst 9500X and 9600X
Series Switches Virtual Interface Access Control List Bypass
Vulnerability

CVE-2025-20316

SIR: Medium

CVSS Score v(3.1): 5.3

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cat9k-acl-L4K7VXgD ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cat9k-acl-L4K7VXgD"]

+--------------------------------------------------------------------

14) Cisco IOS XE Software for Catalyst 9800 Series Wireless
Controller for Cloud Unauthenticated Access to Certificate
Enrollment Service Vulnerability

CVE-2025-20293

SIR: Medium

CVSS Score v(3.1): 5.3

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-9800cl-openscep-SB4xtxzP ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-9800cl-openscep-SB4xtxzP"]

+--------------------------------------------------------------------

15) Cisco Access Point Software Intermittent IPv6 Gateway Change
Vulnerability

CVE-2025-20365

SIR: Medium

CVSS Score v(3.1): 4.3

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-ipv6-gw-tUAzpn9O ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-ipv6-gw-tUAzpn9O"]

+--------------------------------------------------------------------

16) Cisco Wireless Access Point Software Device Analytics Action
Frame Injection Vulnerability

CVE-2025-20364

SIR: Medium

CVSS Score v(3.1): 4.3

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-action-frame-inj-QqCNcz8H ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-action-frame-inj-QqCNcz8H"]


=========================================================
+ CERT-RENATER        |    tel : 01-53-94-20-44         +
+ 23/25 Rue Daviel    |    fax : 01-53-94-20-41         +
+ 75013 Paris         |   email:cert@support.renater.fr +
=========================================================