CVE-2025-20162HIGH 8.6EPSS p33.3%

CVE-2025-20162CVE-2025-20162

Description

A vulnerability in the DHCP snooping security feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a full interface queue wedge, which could result in a denial of service (DoS) condition. This vulnerability is due to improper handling of DHCP request packets. An attacker could exploit this vulnerability by sending DHCP request packets to an affected device. A successful exploit could allow the attacker to cause packets to wedge in the queue, creating a DoS condition for downstream devices of the affected system and requiring that the system restart to drain the queue. Note: This vulnerability can be exploited with either unicast or broadcast DHCP packets on a VLAN that does not have DHCP snooping enabled.

Scoring

CVSS 3.18.6 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
EPSS0.42% probability of exploitation · percentile 33.3% · 2026-06-19T12:03:05Z
Published2025-05-07
Last modified2025-07-11

Underlying weaknesses· 1

CWE-400

References

  1. https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-dhcpsn-dos-xBn8Mtks

1

TypeTargetConfidenceTier
WeaknessUncontrolled Resource Consumptioncwe-4000%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Cisco IOS Software and Cisco IOS XE Software UDP Packet Processing Denial-of-Service Vulnerability
CVE
CVE-2026-20084
CVE
Cisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerability
CVE
Cisco IOS and IOS XE Software Improper Input Validation Vulnerability
CVE
Cisco IOS Software and Cisco IOS XE Software Improper Input Validation Vulnerability
CVE
CVE-2025-20253
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.