Ce mail provient de l'extérieur, restons vigilants

=====================================================================

                            CERT-Renater

                Note d'Information No. 2025/VULN701
_____________________________________________________________________

DATE                : 16/10/2025

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Cisco IOS XE Software,
          Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series,
                           and Video Phone 8875,
                    Cisco Products running Snort,
       Cisco TelePresence Collaboration Endpoint and RoomOS Software.

=====================================================================
https://helpx.adobe.com/security/products/magento/apsb25-94.html
_____________________________________________________________________


Below is the list of Cisco Security Advisories published by Cisco
PSIRT on 2025-October-15.

The following PSIRT security advisories (2 High, 2 Medium) were
published at 16:00 UTC today.

Table of Contents:

1) Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and
Video Phone 8875 with SIP Software Vulnerabilities - SIR: High

2) Cisco IOS XE Software Secure Boot Bypass Vulnerabilities - SIR: High

3) Multiple Cisco Products Snort 3 MIME Denial of Service
Vulnerabilities - SIR: Medium

4) Cisco TelePresence Collaboration Endpoint and RoomOS Software
Information Disclosure Vulnerability - SIR: Medium

+--------------------------------------------------------------------

1) Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and
Video Phone 8875 with SIP Software Vulnerabilities

CVE-2025-20350, CVE-2025-20351

SIR: High

CVSS Score v(3.1): 7.5

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-phone-dos-FPyjLV7A ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-phone-dos-FPyjLV7A"]

+--------------------------------------------------------------------

2) Cisco IOS XE Software Secure Boot Bypass Vulnerabilities

CVE-2025-20313, CVE-2025-20314

SIR: High

CVSS Score v(3.1): 6.7

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-secboot-UqFD8AvC ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-secboot-UqFD8AvC"]

+--------------------------------------------------------------------

3) Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerabilities

CVE-2025-20359, CVE-2025-20360

SIR: Medium

CVSS Score v(3.1): 6.5

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort3-mime-vulns-tTL8PgVH ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort3-mime-vulns-tTL8PgVH"]

+--------------------------------------------------------------------

4) Cisco TelePresence Collaboration Endpoint and RoomOS Software
Information Disclosure Vulnerability

CVE-2025-20329

SIR: Medium

CVSS Score v(3.1): 4.9

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-roomos-inf-disc-qGgsbxAm ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-roomos-inf-disc-qGgsbxAm"]


=========================================================
+ CERT-RENATER        |    tel : 01-53-94-20-44         +
+ 23/25 Rue Daviel    |    fax : 01-53-94-20-41         +
+ 75013 Paris         |   email:cert@support.renater.fr +
=========================================================