VULNERABILITY

Cisco IOS-XR: CVE-2025-20141: Cisco IOS XR Software Release 7.9.2 Denial of Service Vulnerability

Try Surface Command Get a continuous 360° view of your attack surface
Back to Search

Cisco IOS-XR: CVE-2025-20141: Cisco IOS XR Software Release 7.9.2 Denial of Service Vulnerability

Severity
6
CVSS
(AV:A/AC:L/Au:N/C:N/I:N/A:C)
Published
03/12/2025
Created
03/14/2025
Added
03/13/2025
Modified
03/13/2025

Description

A vulnerability in the handling of specific packets that are punted from a line card to a route processor in Cisco IOS XR Software Release 7.9.2 could allow an unauthenticated, adjacent attacker to cause control plane traffic to stop working on multiple Cisco IOS XR platforms. This vulnerability is due to incorrect handling of packets that are punted to the route processor. An attacker could exploit this vulnerability by sending traffic, which must be handled by the Linux stack on the route processor, to an affected device. A successful exploit could allow the attacker to cause control plane traffic to stop working, resulting in a denial of service (DoS) condition.

Solution(s)

  • update-xros

insightVM

Advanced vulnerability management analytics and reporting.
Key Features
  • Lightweight Endpoint Agent
  • Live Dashboards
  • Real Risk Prioritization
  • IT-Integrated Remediation Projects
  • Cloud, Virtual, and Container Assessment
  • Integrated Threat Feeds
  • Easy-to-Use RESTful API
  • Automation-Assisted Patching
  • Automated Containment
Free InsightVM Trial WATCH DEMO

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;