CVE-2025-20313
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-24

Last updated on: 2025-09-26

Assigner: Cisco Systems, Inc.

Description
Multiple vulnerabilities in Cisco IOS XE Software of could allow an authenticated, local attacker with level-15 privileges or an unauthenticated attacker with physical access to the device to execute persistent code at boot time and break the chain of trust. These vulnerabilities are due path traversal and improper image integrity validation. A successful exploit could allow the attacker to execute persistent code on the underlying operating system. Because this allows the attacker to bypass a major security feature of the device, Cisco has raised the Security Impact Rating (SIR) of this advisory from Medium to High. For more information about these vulnerabilities, see the Details ["#details"] section of this advisory. ERP
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-24
Last Modified
2025-09-26
Generated
2026-06-16
AI Q&A
2025-09-24
EPSS Evaluated
2026-06-15
NVD
CVE-2025-20313
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
cisco ios_xe 3.1
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-35 The product uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize '.../...//' (doubled triple dot slash) sequences that can resolve to a location that is outside of that directory.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability involves multiple issues in Cisco IOS XE Software that could allow an authenticated local attacker with high-level privileges or an unauthenticated attacker with physical access to execute persistent code at boot time. The root causes are path traversal and improper image integrity validation, which enable the attacker to break the chain of trust and run persistent malicious code on the device's operating system.

Impact Analysis

The vulnerability can allow an attacker to execute persistent code on the device's operating system, effectively bypassing major security features. This could lead to unauthorized control over the device, compromise of its integrity, confidentiality, and availability, and potentially allow further attacks within the network.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-20313. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart