CVE-2025-20221

07.05.2025, 18:15

A vulnerability in the packet filtering features of Cisco IOS XE SD-WAN Software could allow an unauthenticated, remote attacker to bypass Layer 3 and Layer 4 traffic filters. 

 This vulnerability is due to improper traffic filtering conditions on an affected device. An attacker could exploit this vulnerability by sending a crafted packet to the affected device. A successful exploit could allow the attacker to bypass the Layer 3 and Layer 4 traffic filters and inject a crafted packet into the network.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	5.3 MEDIUM	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
cisco	CNA	5.3 MEDIUM	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 3%

Vendor	Product	Version
cisco	ios_xe	16.12.13
cisco	ios_xe	17.1.1
cisco	ios_xe	17.1.1s:s
cisco	ios_xe	17.1.1t:t
cisco	ios_xe	17.1.3
cisco	ios_xe	17.2.1
cisco	ios_xe	17.2.1a:a
cisco	ios_xe	17.2.1r:r
cisco	ios_xe	17.2.1v:v
cisco	ios_xe	17.2.2
cisco	ios_xe	17.2.3
cisco	ios_xe	17.3.1
cisco	ios_xe	17.3.1a:a
cisco	ios_xe	17.3.2
cisco	ios_xe	17.3.2a:a
cisco	ios_xe	17.3.3
cisco	ios_xe	17.3.4
cisco	ios_xe	17.3.4a:a
cisco	ios_xe	17.3.5
cisco	ios_xe	17.3.6
cisco	ios_xe	17.3.7
cisco	ios_xe	17.3.8
cisco	ios_xe	17.3.8a:a
cisco	ios_xe	17.4.1
cisco	ios_xe	17.4.1a:a
cisco	ios_xe	17.4.1b:b
cisco	ios_xe	17.4.2
cisco	ios_xe	17.5.1
cisco	ios_xe	17.5.1a:a
cisco	ios_xe	17.6.1
cisco	ios_xe	17.6.1a:a
cisco	ios_xe	17.6.1y:y
cisco	ios_xe	17.6.2
cisco	ios_xe	17.6.3
cisco	ios_xe	17.6.3a:a
cisco	ios_xe	17.6.4
cisco	ios_xe	17.6.5
cisco	ios_xe	17.6.5a:a
cisco	ios_xe	17.6.6
cisco	ios_xe	17.6.6a:a
cisco	ios_xe	17.6.7
cisco	ios_xe	17.6.8
cisco	ios_xe	17.6.8a:a
cisco	ios_xe	17.7.1
cisco	ios_xe	17.7.1a:a
cisco	ios_xe	17.7.2
cisco	ios_xe	17.8.1
cisco	ios_xe	17.8.1a:a
cisco	ios_xe	17.9.1
cisco	ios_xe	17.9.1a:a
cisco	ios_xe	17.9.2
cisco	ios_xe	17.9.2a:a
cisco	ios_xe	17.9.3
cisco	ios_xe	17.9.3a:a
cisco	ios_xe	17.9.4
cisco	ios_xe	17.9.4a:a
cisco	ios_xe	17.9.5
cisco	ios_xe	17.9.5a:a
cisco	ios_xe	17.9.5b:b
cisco	ios_xe	17.9.5e:e
cisco	ios_xe	17.9.5f:f
cisco	ios_xe	17.9.6
cisco	ios_xe	17.9.6a:a
cisco	ios_xe	17.10.1
cisco	ios_xe	17.10.1a:a
cisco	ios_xe	17.10.1b:b
cisco	ios_xe	17.11.1
cisco	ios_xe	17.11.1a:a
cisco	ios_xe	17.12.1
cisco	ios_xe	17.12.1a:a
cisco	ios_xe	17.12.1z2:z2
cisco	ios_xe	17.12.2
cisco	ios_xe	17.12.3
cisco	ios_xe	17.12.3a:a
cisco	ios_xe	17.12.4
cisco	ios_xe	17.12.4a:a
cisco	ios_xe	17.12.4b:b
cisco	ios_xe	17.13.1
cisco	ios_xe	17.13.1a:a
cisco	ios_xe	17.14.1
cisco	ios_xe	17.14.1a:a
cisco	ios_xe	17.15.1
cisco	ios_xe	17.15.1a:a
cisco	ios_xe	17.15.1x:x
cisco	ios_xe	17.15.2
cisco	ios_xe	17.15.2b:b
cisco	ios_xe	17.15.2c:c
cisco	ios_xe	17.16.1
cisco	ios_xe	17.16.1a:a

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snmp-bypass-HHUVujdn