CVE-2025-20293
BaseFortify
Publication date: 2025-09-24
Last updated on: 2025-09-26
Assigner: Cisco Systems, Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| cisco | ios_xe | *-*-*-*-*-*-* |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-459 | The product does not properly "clean up" and remove temporary or supporting resources after they have been used. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the Day One setup process of Cisco IOS XE Software for Catalyst 9800 Series Wireless Controllers for Cloud (9800-CL). Due to incomplete cleanup after the setup process, an unauthenticated remote attacker can send Simple Certificate Enrollment Protocol (SCEP) requests to the device. This allows the attacker to access the public-key infrastructure (PKI) server running on the device and request a certificate, which can then be used to join an attacker-controlled device to the virtual wireless controller.
How can this vulnerability impact me? :
The vulnerability could allow an unauthenticated remote attacker to obtain a certificate from the virtual wireless controller. With this certificate, the attacker could potentially join an unauthorized device to the wireless controller, leading to unauthorized network access and potential compromise of network security.