Description

A vulnerability in the handling of specific packets that are punted from a line card to a route processor in Cisco IOS XR Software Release 7.9.2 could allow an unauthenticated, adjacent attacker to cause control plane traffic to stop working on multiple Cisco IOS XR platforms.  This vulnerability is due to incorrect handling of packets that are punted to the route processor. An attacker could exploit this vulnerability by sending traffic, which must be handled by the Linux stack on the route processor, to an affected device. A successful exploit could allow the attacker to cause control plane traffic to stop working, resulting in a denial of service (DoS) condition.

INFO

Published Date :

2025-03-12T16:12:15.494Z

Last Modified :

2025-03-21T20:35:20.642Z

Source :

cisco
AFFECTED PRODUCTS

The following products are affected by CVE-2025-20141 vulnerability.

Vendors Products
Cisco
  • Ios Xr
  • Ios Xr Software
  • Ncs 540-12z20g-sys-a
  • Ncs 540-12z20g-sys-d
  • Ncs 540-24q2c2dd-sys
  • Ncs 540-24q8l2dd-sys
  • Ncs 540-24z8q2c-sys
  • Ncs 540-28z4c-sys-a
  • Ncs 540-28z4c-sys-d
  • Ncs 540-6z14s-sys-d
  • Ncs 540-6z18g-sys-a
  • Ncs 540-6z18g-sys-d
  • Ncs 540-acc-sys
  • Ncs 540-fh-agg
  • Ncs 540-fh-csr-sys
  • Ncs 540x-12z16g-sys-a
  • Ncs 540x-12z16g-sys-d
  • Ncs 540x-16z4g8q2c-a
  • Ncs 540x-16z4g8q2c-d
  • Ncs 540x-16z8q2c-d
  • Ncs 540x-4z14g2q-a
  • Ncs 540x-4z14g2q-d
  • Ncs 540x-6z18g-sys-a
  • Ncs 540x-6z18g-sys-d
  • Ncs 540x-8z16g-sys-a
  • Ncs 540x-8z16g-sys-d
  • Ncs 540x-acc-sys
  • Ncs 5501
  • Ncs 5501-se
  • Ncs 5502
  • Ncs 5502-se
  • Ncs 5504
  • Ncs 5508
  • Ncs 5516
  • Ncs 55a1-24h
  • Ncs 55a1-24q6h-s
  • Ncs 55a1-24q6h-ss
  • Ncs 55a1-36h
  • Ncs 55a1-36h-se
  • Ncs 55a1-48q6h
  • Ncs 55a2-mod-hd-s
  • Ncs 55a2-mod-s
  • Ncs 55a2-mod-se-s
  • Ncs 57b1-5dse-sys
  • Ncs 57b1-6d24-sys
  • Ncs 57c1-48q6-sys
  • Ncs 57c3-mod-sys
  • Ncs 57d2-18dd-sys
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-20141.

URL Resource
https://blog.apnic.net/2024/09/02/crafting-endless-as-paths-in-bgp/ cve-icon cve-icon
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-xr792-bWfVDPY cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact