CVE-2025-20181

A vulnerability in Cisco IOS Software for Cisco Catalyst 2960X, 2960XR, 2960CX, and 3560CX Series Switches could allow an authenticated, local attacker with privilege level 15 or an unauthenticated attacker with physical access to the device to execute persistent code at boot time and break the chain of trust.

 This vulnerability is due to missing signature verification for specific files that may be loaded during the device boot process. An attacker could exploit this vulnerability by placing a crafted file into a specific location on an affected device. A successful exploit could allow the attacker to execute arbitrary code at boot time.

 Because this allows the attacker to bypass a major security feature of the device, Cisco has raised the Security Impact Rating (SIR) of this advisory from Medium to High.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.8 MEDIUM
PHYSICAL
LOW
NONE
CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
ciscoCNA
6.8 MEDIUM
PHYSICAL
LOW
NONE
CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 12%
VendorProductVersion
ciscoios
15.0\(1\)ex
ciscoios
15.0\(1\)ey
ciscoios
15.0\(1\)ey1
ciscoios
15.0\(1\)ey2
ciscoios
15.0\(1\)xo
ciscoios
15.0\(1\)xo1
ciscoios
15.0\(2\)ex
ciscoios
15.0\(2\)ex1
ciscoios
15.0\(2\)ex2
ciscoios
15.0\(2\)ex3
ciscoios
15.0\(2\)ex4
ciscoios
15.0\(2\)ex5
ciscoios
15.0\(2\)ex8
ciscoios
15.0\(2\)ex10
ciscoios
15.0\(2\)ex11
ciscoios
15.0\(2\)ex12
ciscoios
15.0\(2\)ex13
ciscoios
15.0\(2\)se8
ciscoios
15.0\(2\)sqd
ciscoios
15.0\(2\)sqd1
ciscoios
15.0\(2\)sqd2
ciscoios
15.0\(2\)sqd3
ciscoios
15.0\(2\)sqd4
ciscoios
15.0\(2\)sqd5
ciscoios
15.0\(2\)sqd6
ciscoios
15.0\(2\)sqd7
ciscoios
15.0\(2\)sqd8
ciscoios
15.0\(2\)xo
ciscoios
15.0\(2a\)ex5
ciscoios
15.2\(2\)e
ciscoios
15.2\(2\)e1
ciscoios
15.2\(2\)e2
ciscoios
15.2\(2\)e3
ciscoios
15.2\(2\)e4
ciscoios
15.2\(2\)e5
ciscoios
15.2\(2\)e5a
ciscoios
15.2\(2\)e5b
ciscoios
15.2\(2\)e6
ciscoios
15.2\(2\)e7
ciscoios
15.2\(2\)e8
ciscoios
15.2\(2\)e9
ciscoios
15.2\(2\)e10
ciscoios
15.2\(2a\)e1
ciscoios
15.2\(2a\)e2
ciscoios
15.2\(3\)e
ciscoios
15.2\(3\)e1
ciscoios
15.2\(3\)e2
ciscoios
15.2\(3\)e3
ciscoios
15.2\(3\)e4
ciscoios
15.2\(3a\)e
ciscoios
15.2\(4\)e
ciscoios
15.2\(4\)e1
ciscoios
15.2\(4\)e2
ciscoios
15.2\(4\)e3
ciscoios
15.2\(4\)e4
ciscoios
15.2\(4\)e5
ciscoios
15.2\(4\)e6
ciscoios
15.2\(4\)e7
ciscoios
15.2\(4\)e8
ciscoios
15.2\(4\)e9
ciscoios
15.2\(4\)e10
ciscoios
15.2\(4\)e10a
ciscoios
15.2\(4\)e10d
ciscoios
15.2\(4\)ea7
ciscoios
15.2\(4\)ea8
ciscoios
15.2\(4\)ea9
ciscoios
15.2\(4\)ea9a
ciscoios
15.2\(5\)e
ciscoios
15.2\(5\)e1
ciscoios
15.2\(5\)e2
ciscoios
15.2\(5b\)e
ciscoios
15.2\(6\)e
ciscoios
15.2\(6\)e0a
ciscoios
15.2\(6\)e0c
ciscoios
15.2\(6\)e1
ciscoios
15.2\(6\)e2
ciscoios
15.2\(6\)e2a
ciscoios
15.2\(6\)e2b
ciscoios
15.2\(6\)e3
ciscoios
15.2\(6\)eb
ciscoios
15.2\(7\)e
ciscoios
15.2\(7\)e0a
ciscoios
15.2\(7\)e0b
ciscoios
15.2\(7\)e0s
ciscoios
15.2\(7\)e1
ciscoios
15.2\(7\)e1a
ciscoios
15.2\(7\)e2
ciscoios
15.2\(7\)e2a
ciscoios
15.2\(7\)e3
ciscoios
15.2\(7\)e3k
ciscoios
15.2\(7\)e4
ciscoios
15.2\(7\)e5
ciscoios
15.2\(7\)e6
ciscoios
15.2\(7\)e7
ciscoios
15.2\(7\)e8
ciscoios
15.2\(7\)e9
ciscoios
15.2\(7\)e10
ciscoios
15.2\(7a\)e0b
ciscoios
15.2\(7b\)e0b
ciscoios
15.2\(8\)e
ciscoios
15.2\(8\)e1
ciscoios
15.2\(8\)e2
ciscoios
15.2\(8\)e3
ciscoios
15.2\(8\)e4
ciscoios
15.2\(8\)e5
ciscoios
15.2\(8\)e6
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-c2960-3560-sboot-ZtqADrHq