CVE-2025-20295
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-08-27

Last updated on: 2025-08-29

Assigner: Cisco Systems, Inc.

Description
A vulnerability in the CLI of Cisco UCS Manager Software could allow an authenticated, local attacker with administrative privileges to read or create a file or overwrite any file on the file system of the underlying operating system of an affected device, including system files.   This vulnerability is due to insufficient input validation of command arguments supplied by the user. An attacker could exploit this vulnerability by authenticating to a device and submitting crafted input to the affected command. A successful exploit could allow the attacker to read or create a file or overwrite any file on the file system of the underlying operating system of the affected device, including system files. To exploit this vulnerability, the attacker must have valid administrative credentials on the affected device.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-08-27
Last Modified
2025-08-29
Generated
2026-05-27
AI Q&A
2025-08-27
EPSS Evaluated
2026-05-25
NVD
CVE-2025-20295
EUVD
EUVD-2025-25944
Affected Vendors & Products
Showing 3 associated CPEs
Vendor Product Version / Range
cisco ucs_manager 4.2
cisco ucs_manager 4.1
cisco ucs_manager 4.3
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-78 The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability is a command injection flaw in the CLI of Cisco UCS Manager Software. It allows an authenticated local attacker with administrative privileges to read, create, or overwrite any file on the device's file system, including critical system files. The issue arises from insufficient input validation of command arguments supplied by the user. To exploit it, the attacker must have valid administrative credentials and submit crafted input to the affected commands. [1]


How can this vulnerability impact me? :

If exploited, this vulnerability could allow an attacker with administrative access to manipulate files on the underlying operating system of the affected device. This includes reading sensitive files, creating new files, or overwriting existing files, including critical system files. Such actions could compromise the integrity and confidentiality of the system, potentially leading to system instability or unauthorized data access. [1]


How can this vulnerability be detected on my network or system? Can you suggest some commands?

There are no specific detection commands or network detection methods provided for this vulnerability. Detection would require verifying if the device is running an affected version of Cisco UCS Manager Software (versions 4.1 and earlier) and checking for unauthorized or suspicious use of CLI commands by authenticated administrative users. Since exploitation requires valid administrative credentials and local CLI access, monitoring administrative command usage and access logs may help detect attempts. However, no explicit commands or automated detection methods are provided. [1]


What immediate steps should I take to mitigate this vulnerability?

Immediate mitigation steps include upgrading the Cisco UCS Manager Software to a fixed release version starting from 4.2(3p) or 4.3(6c), or later versions such as 6.0 which is not vulnerable. There are no workarounds available. Additionally, restrict administrative access to trusted personnel only and monitor for any suspicious activity. Verify hardware and software compatibility before upgrading. [1]


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart