CVE-2025-20253

Cisco IOS, IOS XE, Secure Firewall Adaptive Security Appliance, and Secure Firewall Threat Defense Software IKEv2 Denial of Service Vulnerability

Description

A vulnerability in the IKEv2 feature of Cisco IOS Software, IOS XE Software, Secure Firewall ASA Software, and Secure FTD Software could allow an unauthenticated, remote attacker to cause the device to reload, resulting in a DoS condition. This vulnerability is due to the improper processing of IKEv2 packets. An attacker could exploit this vulnerability by sending crafted IKEv2 packets to an affected device. A successful exploit could allow the attacker to cause an infinite loop that exhausts resources and could cause the device to reload.

INFO

Published Date :

2025-08-14T16:29:43.673Z

Last Modified :

2025-08-14T19:19:22.460Z

Source :

cisco

AFFECTED PRODUCTS

The following products are affected by CVE-2025-20253 vulnerability.

Vendors	Products
Cisco	Adaptive Security Appliance Software Firepower Threat Defense Software Ios Ios Xe Ios Xe Software

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-20253.

URL	Resource
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-ftd-ios-dos-DOESHWHy

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact