Cisco Nexus 3000 and 9000 Series Switches IS-IS Protocol Denial...

7.4 / 10

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Description

A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) feature of Cisco NX-OS Software for Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, adjacent attacker to cause the IS-IS process to unexpectedly restart, which could cause an affected device to reload.

This vulnerability is due to insufficient input validation when parsing an ingress IS-IS packet. An attacker could exploit this vulnerability by sending a crafted IS-IS packet to an affected device. A successful exploit could allow the attacker to cause the unexpected restart of the IS-IS process, which could cause the affected device to reload, resulting in a denial of service (DoS) condition.
Note: The IS-IS protocol is a routing protocol. To exploit this vulnerability, an attacker must be Layer 2-adjacent to the affected device.

Basic Information

ID CVE-2025-20241

Source cisco

Published Aug 27, 2025 at 16:23

Modified Aug 27, 2025 at 18:18

Affected Product

Vendor Cisco

Product Cisco NX-OS Software

Version 9.2(3)

Affected Versions Cisco Cisco NX-OS Software 9.2(3)
Cisco Cisco NX-OS Software 7.0(3)I5(2)
Cisco Cisco NX-OS Software 6.0(2)A8(7a)
Cisco Cisco NX-OS Software 7.0(3)I4(5)
Cisco Cisco NX-OS Software 7.0(3)I4(6)
Cisco Cisco NX-OS Software 7.0(3)I4(3)
Cisco Cisco NX-OS Software 9.2(2v)
Cisco Cisco NX-OS Software 7.0(3)I4(7)
Cisco Cisco NX-OS Software 7.0(3)I4(1)
Cisco Cisco NX-OS Software 7.0(3)I4(8)
Cisco Cisco NX-OS Software 7.0(3)I4(2)
Cisco Cisco NX-OS Software 6.0(2)A8(11)
Cisco Cisco NX-OS Software 9.2(1)
Cisco Cisco NX-OS Software 9.2(2t)
Cisco Cisco NX-OS Software 9.2(3y)
Cisco Cisco NX-OS Software 7.0(3)I4(1t)
Cisco Cisco NX-OS Software 7.0(3)I7(6z)
Cisco Cisco NX-OS Software 9.3(2)
Cisco Cisco NX-OS Software 7.0(3)F3(3)
Cisco Cisco NX-OS Software 7.0(3)I7(3z)
Cisco Cisco NX-OS Software 7.0(3)IM7(2)
Cisco Cisco NX-OS Software 6.0(2)A8(11b)
Cisco Cisco NX-OS Software 7.0(3)I7(5a)
Cisco Cisco NX-OS Software 7.0(3)I6(1)
Cisco Cisco NX-OS Software 7.0(3)I5(3b)
Cisco Cisco NX-OS Software 9.2(4)
Cisco Cisco NX-OS Software 6.0(2)A8(10)
Cisco Cisco NX-OS Software 6.0(2)A8(2)
Cisco Cisco NX-OS Software 7.0(3)IC4(4)
Cisco Cisco NX-OS Software 7.0(3)F3(3c)
Cisco Cisco NX-OS Software 7.0(3)F3(1)
Cisco Cisco NX-OS Software 7.0(3)F3(5)
Cisco Cisco NX-OS Software 7.0(3)I7(2)
Cisco Cisco NX-OS Software 7.0(3)I5(3)
Cisco Cisco NX-OS Software 7.0(3)I7(3)
Cisco Cisco NX-OS Software 6.0(2)A8(6)
Cisco Cisco NX-OS Software 7.0(3)I6(2)
Cisco Cisco NX-OS Software 6.0(2)A8(5)
Cisco Cisco NX-OS Software 9.3(1)
Cisco Cisco NX-OS Software 6.0(2)A8(7)
Cisco Cisco NX-OS Software 7.0(3)I7(6)
Cisco Cisco NX-OS Software 6.0(2)A8(11a)
Cisco Cisco NX-OS Software 7.0(3)I4(8z)
Cisco Cisco NX-OS Software 7.0(3)I4(9)
Cisco Cisco NX-OS Software 7.0(3)I7(4)
Cisco Cisco NX-OS Software 7.0(3)I7(7)
Cisco Cisco NX-OS Software 6.0(2)A8(9)
Cisco Cisco NX-OS Software 6.0(2)A8(1)
Cisco Cisco NX-OS Software 6.0(2)A8(10a)
Cisco Cisco NX-OS Software 7.0(3)I5(1)
Cisco Cisco NX-OS Software 9.3(1z)
Cisco Cisco NX-OS Software 9.2(2)
Cisco Cisco NX-OS Software 7.0(3)F3(4)
Cisco Cisco NX-OS Software 7.0(3)I4(8b)
Cisco Cisco NX-OS Software 6.0(2)A8(3)
Cisco Cisco NX-OS Software 7.0(3)I4(6t)
Cisco Cisco NX-OS Software 7.0(3)I5(3a)
Cisco Cisco NX-OS Software 6.0(2)A8(8)
Cisco Cisco NX-OS Software 7.0(3)I7(5)
Cisco Cisco NX-OS Software 7.0(3)F3(3a)
Cisco Cisco NX-OS Software 6.0(2)A8(4)
Cisco Cisco NX-OS Software 7.0(3)I4(8a)
Cisco Cisco NX-OS Software 7.0(3)F3(2)
Cisco Cisco NX-OS Software 7.0(3)I4(4)
Cisco Cisco NX-OS Software 7.0(3)I7(1)
Cisco Cisco NX-OS Software 7.0(3)IA7(2)
Cisco Cisco NX-OS Software 7.0(3)IA7(1)
Cisco Cisco NX-OS Software 6.0(2)A8(7b)
Cisco Cisco NX-OS Software 6.0(2)A8(4a)
Cisco Cisco NX-OS Software 9.3(3)
Cisco Cisco NX-OS Software 7.0(3)I7(8)
Cisco Cisco NX-OS Software 9.3(4)
Cisco Cisco NX-OS Software 9.3(5)
Cisco Cisco NX-OS Software 7.0(3)I7(9)
Cisco Cisco NX-OS Software 9.3(6)
Cisco Cisco NX-OS Software 10.1(2)
Cisco Cisco NX-OS Software 10.1(1)
Cisco Cisco NX-OS Software 9.3(5w)
Cisco Cisco NX-OS Software 9.3(7)
Cisco Cisco NX-OS Software 9.3(7k)
Cisco Cisco NX-OS Software 7.0(3)I7(9w)
Cisco Cisco NX-OS Software 10.2(1)
Cisco Cisco NX-OS Software 9.3(7a)
Cisco Cisco NX-OS Software 9.3(8)
Cisco Cisco NX-OS Software 7.0(3)I7(10)
Cisco Cisco NX-OS Software 10.2(1q)
Cisco Cisco NX-OS Software 10.2(2)
Cisco Cisco NX-OS Software 9.3(9)
Cisco Cisco NX-OS Software 10.1(2t)
Cisco Cisco NX-OS Software 10.2(3)
Cisco Cisco NX-OS Software 10.2(3t)
Cisco Cisco NX-OS Software 9.3(10)
Cisco Cisco NX-OS Software 10.2(2a)
Cisco Cisco NX-OS Software 10.3(1)
Cisco Cisco NX-OS Software 10.2(4)
Cisco Cisco NX-OS Software 10.3(2)
Cisco Cisco NX-OS Software 9.3(11)
Cisco Cisco NX-OS Software 10.3(3)
Cisco Cisco NX-OS Software 10.2(5)
Cisco Cisco NX-OS Software 9.3(12)
Cisco Cisco NX-OS Software 10.2(3v)
Cisco Cisco NX-OS Software 10.4(1)
Cisco Cisco NX-OS Software 10.3(99w)
Cisco Cisco NX-OS Software 10.2(6)
Cisco Cisco NX-OS Software 10.3(3w)
Cisco Cisco NX-OS Software 10.3(99x)
Cisco Cisco NX-OS Software 10.3(3o)
Cisco Cisco NX-OS Software 10.3(4)
Cisco Cisco NX-OS Software 10.3(3p)
Cisco Cisco NX-OS Software 10.3(4a)
Cisco Cisco NX-OS Software 10.4(2)
Cisco Cisco NX-OS Software 10.3(3q)
Cisco Cisco NX-OS Software 9.3(13)
Cisco Cisco NX-OS Software 10.3(5)
Cisco Cisco NX-OS Software 10.2(7)
Cisco Cisco NX-OS Software 10.4(3)
Cisco Cisco NX-OS Software 10.3(3x)
Cisco Cisco NX-OS Software 10.3(4g)
Cisco Cisco NX-OS Software 10.5(1)
Cisco Cisco NX-OS Software 10.2(8)
Cisco Cisco NX-OS Software 10.3(3r)
Cisco Cisco NX-OS Software 10.3(6)
Cisco Cisco NX-OS Software 9.3(14)
Cisco Cisco NX-OS Software 10.4(4)
Cisco Cisco NX-OS Software 10.3(4h)
Cisco Cisco NX-OS Software 10.5(2)
Cisco Cisco NX-OS Software 10.4(4g)

References

sec.cloudapps.cisco.com /security/center/content/CiscoSecurityAdvisory/cisco-sa-n39k-isis-dos-JhJA8Rfx

{
    "lastseen": "",
    "description": "A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) feature of Cisco NX-OS Software for Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, adjacent attacker to cause the IS-IS process to unexpectedly restart, which could cause an affected device to reload.\r\n\r\nThis vulnerability is due to insufficient input validation when parsing an ingress IS-IS packet. An attacker could exploit this vulnerability by sending a crafted IS-IS packet to an affected device. A successful exploit could allow the attacker to cause the unexpected restart of the IS-IS process, which could cause the affected device to reload, resulting in a denial of service (DoS) condition.\r\nNote: The IS-IS protocol is a routing protocol. To exploit this vulnerability, an attacker must be Layer 2-adjacent to the affected device.",
    "published": "2025-08-27T16:23:55.242Z",
    "modified": "2025-08-27T18:18:32.250Z",
    "type": "cve",
    "title": "Cisco Nexus 3000 and 9000 Series Switches IS-IS Protocol <TBD> Denial of Service Vulnerability",
    "source": "cisco",
    "references": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n39k-isis-dos-JhJA8Rfx",
    "id": "CVE-2025-20241",
    "bulletinFamily": "",
    "cwe": null,
    "cvelist": null,
    "sourceData": "Cisco Cisco NX-OS Software 9.2(3)\nCisco Cisco NX-OS Software 7.0(3)I5(2)\nCisco Cisco NX-OS Software 6.0(2)A8(7a)\nCisco Cisco NX-OS Software 7.0(3)I4(5)\nCisco Cisco NX-OS Software 7.0(3)I4(6)\nCisco Cisco NX-OS Software 7.0(3)I4(3)\nCisco Cisco NX-OS Software 9.2(2v)\nCisco Cisco NX-OS Software 7.0(3)I4(7)\nCisco Cisco NX-OS Software 7.0(3)I4(1)\nCisco Cisco NX-OS Software 7.0(3)I4(8)\nCisco Cisco NX-OS Software 7.0(3)I4(2)\nCisco Cisco NX-OS Software 6.0(2)A8(11)\nCisco Cisco NX-OS Software 9.2(1)\nCisco Cisco NX-OS Software 9.2(2t)\nCisco Cisco NX-OS Software 9.2(3y)\nCisco Cisco NX-OS Software 7.0(3)I4(1t)\nCisco Cisco NX-OS Software 7.0(3)I7(6z)\nCisco Cisco NX-OS Software 9.3(2)\nCisco Cisco NX-OS Software 7.0(3)F3(3)\nCisco Cisco NX-OS Software 7.0(3)I7(3z)\nCisco Cisco NX-OS Software 7.0(3)IM7(2)\nCisco Cisco NX-OS Software 6.0(2)A8(11b)\nCisco Cisco NX-OS Software 7.0(3)I7(5a)\nCisco Cisco NX-OS Software 7.0(3)I6(1)\nCisco Cisco NX-OS Software 7.0(3)I5(3b)\nCisco Cisco NX-OS Software 9.2(4)\nCisco Cisco NX-OS Software 6.0(2)A8(10)\nCisco Cisco NX-OS Software 6.0(2)A8(2)\nCisco Cisco NX-OS Software 7.0(3)IC4(4)\nCisco Cisco NX-OS Software 7.0(3)F3(3c)\nCisco Cisco NX-OS Software 7.0(3)F3(1)\nCisco Cisco NX-OS Software 7.0(3)F3(5)\nCisco Cisco NX-OS Software 7.0(3)I7(2)\nCisco Cisco NX-OS Software 7.0(3)I5(3)\nCisco Cisco NX-OS Software 7.0(3)I7(3)\nCisco Cisco NX-OS Software 6.0(2)A8(6)\nCisco Cisco NX-OS Software 7.0(3)I6(2)\nCisco Cisco NX-OS Software 6.0(2)A8(5)\nCisco Cisco NX-OS Software 9.3(1)\nCisco Cisco NX-OS Software 6.0(2)A8(7)\nCisco Cisco NX-OS Software 7.0(3)I7(6)\nCisco Cisco NX-OS Software 6.0(2)A8(11a)\nCisco Cisco NX-OS Software 7.0(3)I4(8z)\nCisco Cisco NX-OS Software 7.0(3)I4(9)\nCisco Cisco NX-OS Software 7.0(3)I7(4)\nCisco Cisco NX-OS Software 7.0(3)I7(7)\nCisco Cisco NX-OS Software 6.0(2)A8(9)\nCisco Cisco NX-OS Software 6.0(2)A8(1)\nCisco Cisco NX-OS Software 6.0(2)A8(10a)\nCisco Cisco NX-OS Software 7.0(3)I5(1)\nCisco Cisco NX-OS Software 9.3(1z)\nCisco Cisco NX-OS Software 9.2(2)\nCisco Cisco NX-OS Software 7.0(3)F3(4)\nCisco Cisco NX-OS Software 7.0(3)I4(8b)\nCisco Cisco NX-OS Software 6.0(2)A8(3)\nCisco Cisco NX-OS Software 7.0(3)I4(6t)\nCisco Cisco NX-OS Software 7.0(3)I5(3a)\nCisco Cisco NX-OS Software 6.0(2)A8(8)\nCisco Cisco NX-OS Software 7.0(3)I7(5)\nCisco Cisco NX-OS Software 7.0(3)F3(3a)\nCisco Cisco NX-OS Software 6.0(2)A8(4)\nCisco Cisco NX-OS Software 7.0(3)I4(8a)\nCisco Cisco NX-OS Software 7.0(3)F3(2)\nCisco Cisco NX-OS Software 7.0(3)I4(4)\nCisco Cisco NX-OS Software 7.0(3)I7(1)\nCisco Cisco NX-OS Software 7.0(3)IA7(2)\nCisco Cisco NX-OS Software 7.0(3)IA7(1)\nCisco Cisco NX-OS Software 6.0(2)A8(7b)\nCisco Cisco NX-OS Software 6.0(2)A8(4a)\nCisco Cisco NX-OS Software 9.3(3)\nCisco Cisco NX-OS Software 7.0(3)I7(8)\nCisco Cisco NX-OS Software 9.3(4)\nCisco Cisco NX-OS Software 9.3(5)\nCisco Cisco NX-OS Software 7.0(3)I7(9)\nCisco Cisco NX-OS Software 9.3(6)\nCisco Cisco NX-OS Software 10.1(2)\nCisco Cisco NX-OS Software 10.1(1)\nCisco Cisco NX-OS Software 9.3(5w)\nCisco Cisco NX-OS Software 9.3(7)\nCisco Cisco NX-OS Software 9.3(7k)\nCisco Cisco NX-OS Software 7.0(3)I7(9w)\nCisco Cisco NX-OS Software 10.2(1)\nCisco Cisco NX-OS Software 9.3(7a)\nCisco Cisco NX-OS Software 9.3(8)\nCisco Cisco NX-OS Software 7.0(3)I7(10)\nCisco Cisco NX-OS Software 10.2(1q)\nCisco Cisco NX-OS Software 10.2(2)\nCisco Cisco NX-OS Software 9.3(9)\nCisco Cisco NX-OS Software 10.1(2t)\nCisco Cisco NX-OS Software 10.2(3)\nCisco Cisco NX-OS Software 10.2(3t)\nCisco Cisco NX-OS Software 9.3(10)\nCisco Cisco NX-OS Software 10.2(2a)\nCisco Cisco NX-OS Software 10.3(1)\nCisco Cisco NX-OS Software 10.2(4)\nCisco Cisco NX-OS Software 10.3(2)\nCisco Cisco NX-OS Software 9.3(11)\nCisco Cisco NX-OS Software 10.3(3)\nCisco Cisco NX-OS Software 10.2(5)\nCisco Cisco NX-OS Software 9.3(12)\nCisco Cisco NX-OS Software 10.2(3v)\nCisco Cisco NX-OS Software 10.4(1)\nCisco Cisco NX-OS Software 10.3(99w)\nCisco Cisco NX-OS Software 10.2(6)\nCisco Cisco NX-OS Software 10.3(3w)\nCisco Cisco NX-OS Software 10.3(99x)\nCisco Cisco NX-OS Software 10.3(3o)\nCisco Cisco NX-OS Software 10.3(4)\nCisco Cisco NX-OS Software 10.3(3p)\nCisco Cisco NX-OS Software 10.3(4a)\nCisco Cisco NX-OS Software 10.4(2)\nCisco Cisco NX-OS Software 10.3(3q)\nCisco Cisco NX-OS Software 9.3(13)\nCisco Cisco NX-OS Software 10.3(5)\nCisco Cisco NX-OS Software 10.2(7)\nCisco Cisco NX-OS Software 10.4(3)\nCisco Cisco NX-OS Software 10.3(3x)\nCisco Cisco NX-OS Software 10.3(4g)\nCisco Cisco NX-OS Software 10.5(1)\nCisco Cisco NX-OS Software 10.2(8)\nCisco Cisco NX-OS Software 10.3(3r)\nCisco Cisco NX-OS Software 10.3(6)\nCisco Cisco NX-OS Software 9.3(14)\nCisco Cisco NX-OS Software 10.4(4)\nCisco Cisco NX-OS Software 10.3(4h)\nCisco Cisco NX-OS Software 10.5(2)\nCisco Cisco NX-OS Software 10.4(4g)",
    "sourceHref": "",
    "cvss": {
        "score": 7.4,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Cisco NX-OS Software",
    "version": "9.2(3)",
    "vendor": "Cisco",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Cisco Nexus 3000 and 9000 Series Switches IS-IS Protocol Denial of Service Vulnerability_CVE-2025-20241

Description

Basic Information

Affected Product

References

💭 Join the Security Discussion ❌ Cancel Reply