CVE-2025-20316

Summary

A vulnerability in the access control list (ACL) programming of Cisco IOS XE Software for Cisco Catalyst 9500X and 9600X Series Switches could allow an unauthenticated, remote attacker to bypass a configured ACL on an affected device. This vulnerability is due to the flooding of traffic from an unlearned MAC address on a switch virtual interface (SVI) that has an egress ACL applied. An attacker could exploit this vulnerability by causing the VLAN to flush its MAC address table. This condition can also occur if the MAC address table is full. A successful exploit could allow the attacker to bypass an egress ACL on an affected device.

Affected Software

VendorProductVersion RangeStatus
CiscoCisco IOS XE Software17.7.1affected
CiscoCisco IOS XE Software17.10.1affected
CiscoCisco IOS XE Software17.10.1baffected
CiscoCisco IOS XE Software17.8.1affected
CiscoCisco IOS XE Software17.9.1affected
CiscoCisco IOS XE Software17.9.2affected
CiscoCisco IOS XE Software17.9.3affected
CiscoCisco IOS XE Software17.9.4affected
CiscoCisco IOS XE Software17.9.5affected
CiscoCisco IOS XE Software17.9.4aaffected
CiscoCisco IOS XE Software17.9.6affected
CiscoCisco IOS XE Software17.9.6aaffected
CiscoCisco IOS XE Software17.9.7affected
CiscoCisco IOS XE Software17.11.1affected
CiscoCisco IOS XE Software17.12.1affected
CiscoCisco IOS XE Software17.12.2affected
CiscoCisco IOS XE Software17.12.3affected
CiscoCisco IOS XE Software17.12.4affected
CiscoCisco IOS XE Software17.12.5affected
CiscoCisco IOS XE Software17.13.1affected
CiscoCisco IOS XE Software17.14.1affected
CiscoCisco IOS XE Software17.15.1affected
CiscoCisco IOS XE Software17.15.2affected
CiscoCisco IOS XE Software17.15.3affected
CiscoCisco IOS XE Software17.15.2baffected
CiscoCisco IOS XE Software17.16.1affected
CiscoCisco IOS XE Software17.17.1affected

Weaknesses

  • CWE-284: Improper Access Control

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References