CVE 7.7 HIGH

CVE-2025-20327_CVE-2025-20327

September 24, 2025 invoker category_cve
7.7 / 10
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Description

A vulnerability in the web UI of Cisco IOS Software could allow an authenticated, remote attacker with low privileges to cause a denial of service (DoS) condition on an affected device.

This vulnerability is due to improper input validation. An attacker could exploit this vulnerability by sending a crafted URL in an HTTP request. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition.

Basic Information

ID CVE-2025-20327
Source cisco
Published Sep 24, 2025 at 17:11
Modified Sep 24, 2025 at 18:11

Affected Product

Vendor Cisco
Product IOS
Version 15.2(6)E2
Affected Versions Cisco IOS 15.2(6)E2
Cisco IOS 15.2(7)E
Cisco IOS 15.2(6)E2a
Cisco IOS 15.2(6)E2b
Cisco IOS 15.2(7)E1
Cisco IOS 15.2(7)E0a
Cisco IOS 15.2(7)E0b
Cisco IOS 15.2(7)E0s
Cisco IOS 15.2(6)E3
Cisco IOS 15.2(7)E2
Cisco IOS 15.2(7a)E0b
Cisco IOS 15.2(7)E3
Cisco IOS 15.2(7)E1a
Cisco IOS 15.2(7b)E0b
Cisco IOS 15.2(7)E2a
Cisco IOS 15.2(7)E4
Cisco IOS 15.2(7)E3k
Cisco IOS 15.2(8)E
Cisco IOS 15.2(8)E1
Cisco IOS 15.2(7)E5
Cisco IOS 15.2(7)E6
Cisco IOS 15.2(8)E2
Cisco IOS 15.2(7)E7
Cisco IOS 15.2(8)E3
Cisco IOS 15.2(7)E8
Cisco IOS 15.2(8)E4
Cisco IOS 15.2(7)E9
Cisco IOS 15.2(8)E5
Cisco IOS 15.2(7)E10

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.