CVE-2025-20352HIGH 7.7CISA KEVEPSS p98.3%

CVE-2025-20352Cisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerability

Cisco / IOS and IOS XE

Description

Cisco IOS and IOS XE contains a stack-based buffer overflow vulnerability in the Simple Network Management Protocol (SNMP) subsystem that could allow for denial of service or remote code execution. A successful exploit could allow a low-privileged attacker to cause the affected system to reload, resulting in a DoS condition, or allow a high-privileged attacker to execute arbitrary code as the root user and obtain full control of the affected system.

Scoring

CVSS 3.17.7 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
EPSS37.61% probability of exploitation · percentile 98.3% · 2026-06-18T12:00:27Z
Published2025-09-24
Last modified2025-10-28

CISA KEV entry

Added to KEV: 2025-09-29

Underlying weaknesses· 1

CWE-121

References

  1. https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snmp-x4LPhte
  2. https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-20352

1

TypeTargetConfidenceTier
WeaknessStack-based Buffer Overflowcwe-1210%live

(incoming)1

TypeTargetConfidenceTier
KEVEntryCisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerabilitykev-cve-2025-203520%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability
CVE
Cisco IOS Software SNMP Remote Code Execution Vulnerability
CVE
Cisco IOS Software Resource Management Errors Vulnerability
CVE
Cisco IOS Software and Cisco IOS XE Software Quality of Service Remote Code Execution Vulnerability
CVE
Cisco IOS, XR, and XE Software Buffer Overflow Vulnerability
CVE
CVE-2025-20334
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.