Network admins should quickly patch a vulnerability in Cisco Systems IOS and IOS XE software to remove a stack overflow condition in the software’s Simple Network Management Protocol (SNMP) subsystem or risk nasty attacks, say experts.
“I wouldn’t delay patching,” says David Shipley, head of Canadian security awareness firm Beauceron Security, because with the release of a Cisco warning of the hole “attackers will likely have PoCs (proofs of concept of an exploit) with hours, thanks to AI tools. Delay patching at your own [peril].”
The vulnerability, CVE-2025-20352, can:
allow a low privileged authenticated attacker who sends a crafted SNMP packet to an affected device to cause the system to reload, resulting in a denial of service (DoS) condition.
allow a high-privileged attacker to execute arbitrary code as the root user and obtain full control of the affected system.
No Responses