CVE-2025-20240

EUVD-2025-31028

24.09.2025, 18:15

A vulnerability in the Web Authentication feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting attack (XSS) on an affected device.

 This vulnerability is due to improper sanitization of user-supplied input. An attacker could exploit this vulnerability by persuading a user to click a malicious link. A successful exploit could allow the attacker to execute a reflected XSS attack and steal user cookies from the affected device.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
cisco	CNA	6.1 MEDIUM	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: Unknown

Early Detection

Affected products identified ahead of NVD analysis through intelligence sources.

Vendor	Product	Version	Source
cisco	ios_xe	16.6.1	CNA
cisco	ios_xe	16.6.2	CNA
cisco	ios_xe	16.6.3	CNA
cisco	ios_xe	16.6.4	CNA
cisco	ios_xe	16.6.5	CNA
cisco	ios_xe	16.6.4a	CNA
cisco	ios_xe	16.6.5a	CNA
cisco	ios_xe	16.6.6	CNA
cisco	ios_xe	16.6.7	CNA
cisco	ios_xe	16.6.8	CNA
cisco	ios_xe	16.6.9	CNA
cisco	ios_xe	16.6.10	CNA
cisco	ios_xe	16.7.1	CNA
cisco	ios_xe	16.7.1a	CNA
cisco	ios_xe	16.7.1b	CNA
cisco	ios_xe	16.7.2	CNA
cisco	ios_xe	16.7.3	CNA
cisco	ios_xe	16.7.4	CNA
cisco	ios_xe	16.8.1	CNA
cisco	ios_xe	16.8.1a	CNA
cisco	ios_xe	16.8.1b	CNA
cisco	ios_xe	16.8.1s	CNA
cisco	ios_xe	16.8.1c	CNA
cisco	ios_xe	16.8.1d	CNA
cisco	ios_xe	16.8.2	CNA
cisco	ios_xe	16.8.1e	CNA
cisco	ios_xe	16.8.3	CNA
cisco	ios_xe	16.9.1	CNA
cisco	ios_xe	16.9.2	CNA
cisco	ios_xe	16.9.1a	CNA
cisco	ios_xe	16.9.1b	CNA
cisco	ios_xe	16.9.1s	CNA
cisco	ios_xe	16.9.3	CNA
cisco	ios_xe	16.9.4	CNA
cisco	ios_xe	16.9.3a	CNA
cisco	ios_xe	16.9.5	CNA
cisco	ios_xe	16.9.5f	CNA
cisco	ios_xe	16.9.6	CNA
cisco	ios_xe	16.9.7	CNA
cisco	ios_xe	16.9.8	CNA
cisco	ios_xe	16.10.1	CNA
cisco	ios_xe	16.10.1a	CNA
cisco	ios_xe	16.10.1b	CNA
cisco	ios_xe	16.10.1s	CNA
cisco	ios_xe	16.10.1c	CNA
cisco	ios_xe	16.10.1e	CNA
cisco	ios_xe	16.10.1d	CNA
cisco	ios_xe	16.10.2	CNA
cisco	ios_xe	16.10.1f	CNA
cisco	ios_xe	16.10.1g	CNA
cisco	ios_xe	16.10.3	CNA
cisco	ios_xe	16.11.1	CNA
cisco	ios_xe	16.11.1a	CNA
cisco	ios_xe	16.11.1b	CNA
cisco	ios_xe	16.11.2	CNA
cisco	ios_xe	16.11.1s	CNA
cisco	ios_xe	16.12.1	CNA
cisco	ios_xe	16.12.1s	CNA
cisco	ios_xe	16.12.1a	CNA
cisco	ios_xe	16.12.1c	CNA
cisco	ios_xe	16.12.1w	CNA
cisco	ios_xe	16.12.2	CNA
cisco	ios_xe	16.12.1y	CNA
cisco	ios_xe	16.12.2a	CNA
cisco	ios_xe	16.12.3	CNA
cisco	ios_xe	16.12.8	CNA
cisco	ios_xe	16.12.2s	CNA
cisco	ios_xe	16.12.1x	CNA
cisco	ios_xe	16.12.1t	CNA
cisco	ios_xe	16.12.4	CNA
cisco	ios_xe	16.12.3s	CNA
cisco	ios_xe	16.12.3a	CNA
cisco	ios_xe	16.12.4a	CNA
cisco	ios_xe	16.12.5	CNA
cisco	ios_xe	16.12.6	CNA
cisco	ios_xe	16.12.1z1	CNA
cisco	ios_xe	16.12.5a	CNA
cisco	ios_xe	16.12.5b	CNA
cisco	ios_xe	16.12.1z2	CNA
cisco	ios_xe	16.12.6a	CNA
cisco	ios_xe	16.12.7	CNA
cisco	ios_xe	16.12.9	CNA
cisco	ios_xe	16.12.10	CNA
cisco	ios_xe	16.12.10a	CNA
cisco	ios_xe	16.12.11	CNA
cisco	ios_xe	16.12.12	CNA
cisco	ios_xe	16.12.13	CNA
cisco	ios_xe	17.1.1	CNA
cisco	ios_xe	17.1.1a	CNA
cisco	ios_xe	17.1.1s	CNA
cisco	ios_xe	17.1.1t	CNA
cisco	ios_xe	17.1.3	CNA
cisco	ios_xe	17.2.1	CNA
cisco	ios_xe	17.2.1r	CNA
cisco	ios_xe	17.2.1a	CNA
cisco	ios_xe	17.2.1v	CNA
cisco	ios_xe	17.2.2	CNA
cisco	ios_xe	17.2.3	CNA
cisco	ios_xe	17.3.1	CNA
cisco	ios_xe	17.3.2	CNA
cisco	ios_xe	17.3.3	CNA
cisco	ios_xe	17.3.1a	CNA
cisco	ios_xe	17.3.1w	CNA
cisco	ios_xe	17.3.2a	CNA
cisco	ios_xe	17.3.1x	CNA
cisco	ios_xe	17.3.1z	CNA
cisco	ios_xe	17.3.4	CNA
cisco	ios_xe	17.3.5	CNA
cisco	ios_xe	17.3.4a	CNA
cisco	ios_xe	17.3.6	CNA
cisco	ios_xe	17.3.4b	CNA
cisco	ios_xe	17.3.4c	CNA
cisco	ios_xe	17.3.5a	CNA
cisco	ios_xe	17.3.5b	CNA
cisco	ios_xe	17.3.7	CNA
cisco	ios_xe	17.3.8	CNA
cisco	ios_xe	17.3.8a	CNA
cisco	ios_xe	17.4.1	CNA
cisco	ios_xe	17.4.2	CNA
cisco	ios_xe	17.4.1a	CNA
cisco	ios_xe	17.4.1b	CNA
cisco	ios_xe	17.4.2a	CNA
cisco	ios_xe	17.5.1	CNA
cisco	ios_xe	17.5.1a	CNA
cisco	ios_xe	17.6.1	CNA
cisco	ios_xe	17.6.2	CNA
cisco	ios_xe	17.6.1w	CNA
cisco	ios_xe	17.6.1a	CNA
cisco	ios_xe	17.6.1x	CNA
cisco	ios_xe	17.6.3	CNA
cisco	ios_xe	17.6.1y	CNA
cisco	ios_xe	17.6.1z	CNA
cisco	ios_xe	17.6.3a	CNA
cisco	ios_xe	17.6.4	CNA
cisco	ios_xe	17.6.1z1	CNA
cisco	ios_xe	17.6.5	CNA
cisco	ios_xe	17.6.6	CNA
cisco	ios_xe	17.6.6a	CNA
cisco	ios_xe	17.6.5a	CNA
cisco	ios_xe	17.6.7	CNA
cisco	ios_xe	17.6.8	CNA
cisco	ios_xe	17.6.8a	CNA
cisco	ios_xe	17.7.1	CNA
cisco	ios_xe	17.7.1a	CNA
cisco	ios_xe	17.7.1b	CNA
cisco	ios_xe	17.7.2	CNA
cisco	ios_xe	17.10.1	CNA
cisco	ios_xe	17.10.1a	CNA
cisco	ios_xe	17.10.1b	CNA
cisco	ios_xe	17.8.1	CNA
cisco	ios_xe	17.8.1a	CNA
cisco	ios_xe	17.9.1	CNA
cisco	ios_xe	17.9.1w	CNA
cisco	ios_xe	17.9.2	CNA
cisco	ios_xe	17.9.1a	CNA
cisco	ios_xe	17.9.1x	CNA
cisco	ios_xe	17.9.1y	CNA
cisco	ios_xe	17.9.3	CNA
cisco	ios_xe	17.9.2a	CNA
cisco	ios_xe	17.9.1x1	CNA
cisco	ios_xe	17.9.3a	CNA
cisco	ios_xe	17.9.4	CNA
cisco	ios_xe	17.9.1y1	CNA
cisco	ios_xe	17.9.5	CNA
cisco	ios_xe	17.9.4a	CNA
cisco	ios_xe	17.9.5a	CNA
cisco	ios_xe	17.9.5b	CNA
cisco	ios_xe	17.9.6	CNA
cisco	ios_xe	17.9.6a	CNA
cisco	ios_xe	17.9.7	CNA
cisco	ios_xe	17.9.5e	CNA
cisco	ios_xe	17.9.5f	CNA
cisco	ios_xe	17.9.7a	CNA
cisco	ios_xe	17.9.7b	CNA
cisco	ios_xe	17.11.1	CNA
cisco	ios_xe	17.11.1a	CNA
cisco	ios_xe	17.12.1	CNA
cisco	ios_xe	17.12.1w	CNA
cisco	ios_xe	17.12.1a	CNA
cisco	ios_xe	17.12.1x	CNA
cisco	ios_xe	17.12.2	CNA
cisco	ios_xe	17.12.3	CNA
cisco	ios_xe	17.12.2a	CNA
cisco	ios_xe	17.12.1y	CNA
cisco	ios_xe	17.12.1z	CNA
cisco	ios_xe	17.12.4	CNA
cisco	ios_xe	17.12.3a	CNA
cisco	ios_xe	17.12.1z1	CNA
cisco	ios_xe	17.12.1z2	CNA
cisco	ios_xe	17.12.4a	CNA
cisco	ios_xe	17.12.5	CNA
cisco	ios_xe	17.12.4b	CNA
cisco	ios_xe	17.12.1z3	CNA
cisco	ios_xe	17.12.5a	CNA
cisco	ios_xe	17.12.1z4	CNA
cisco	ios_xe	17.12.5b	CNA
cisco	ios_xe	17.12.5c	CNA
cisco	ios_xe	17.13.1	CNA
cisco	ios_xe	17.13.1a	CNA
cisco	ios_xe	17.14.1	CNA
cisco	ios_xe	17.14.1a	CNA
cisco	ios_xe	17.15.1	CNA
cisco	ios_xe	17.15.1w	CNA
cisco	ios_xe	17.15.1a	CNA
cisco	ios_xe	17.15.2	CNA
cisco	ios_xe	17.15.1b	CNA
cisco	ios_xe	17.15.1x	CNA
cisco	ios_xe	17.15.3	CNA
cisco	ios_xe	17.15.2c	CNA
cisco	ios_xe	17.15.2a	CNA
cisco	ios_xe	17.15.1y	CNA
cisco	ios_xe	17.15.2b	CNA
cisco	ios_xe	17.15.3a	CNA
cisco	ios_xe	17.15.3b	CNA
cisco	ios_xe	17.16.1	CNA
cisco	ios_xe	17.16.1a	CNA

Common Weakness Enumeration

CWE-692 - Incomplete Denylist to Cross-Site Scripting
The product uses a denylist-based protection mechanism to defend against XSS attacks, but the denylist is incomplete, allowing XSS variants to succeed.

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webui-xss-VWyDgjOU