{"id":5047,"date":"2025-09-25T19:00:10","date_gmt":"2025-09-25T19:00:10","guid":{"rendered":"https:\/\/cybersecurityinfocus.com\/?p=5047"},"modified":"2025-09-25T19:00:10","modified_gmt":"2025-09-25T19:00:10","slug":"cisco-admins-urged-to-patch-ios-ios-xe-devices","status":"publish","type":"post","link":"https:\/\/cybersecurityinfocus.com\/?p=5047","title":{"rendered":"Cisco admins urged to patch IOS, IOS XE devices"},"content":{"rendered":"<div>\n<div class=\"grid grid--cols-10@md grid--cols-8@lg article-column\">\n<div class=\"col-12 col-10@md col-6@lg col-start-3@lg\">\n<div class=\"article-column__content\">\n<div class=\"container\"><\/div>\n<p>Network admins should quickly patch a vulnerability in Cisco Systems IOS and IOS XE software to remove a\u00a0stack overflow condition in the software\u2019s Simple Network Management Protocol (SNMP) subsystem or risk nasty attacks, say experts.<\/p>\n<p>\u201cI wouldn\u2019t delay patching,\u201d says <a href=\"https:\/\/www.linkedin.com\/in\/dbshipley\/\" target=\"_blank\" rel=\"noopener\">David Shipley<\/a>, head of Canadian security awareness firm Beauceron Security, because <a href=\"https:\/\/sec.cloudapps.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-snmp-x4LPhte\" target=\"_blank\" rel=\"noopener\">with the release of a Cisco warning of the hole<\/a> \u201cattackers will likely have PoCs (proofs of concept of an exploit) with hours, thanks to AI tools. Delay patching at your own [peril].\u201d<\/p>\n<p>The vulnerability, <a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2025-20352\" target=\"_blank\" rel=\"noopener\">CVE-2025-20352<\/a>, can:<\/p>\n<p>allow a low privileged authenticated attacker who sends a crafted SNMP packet to an affected device to cause the system to reload, resulting in a denial of service (DoS) condition.<\/p>\n<p>allow a high-privileged attacker to execute arbitrary code as the\u00a0<em>root<\/em>\u00a0user and obtain full control of the affected system.<\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div>","protected":false},"excerpt":{"rendered":"<p>Network admins should quickly patch a vulnerability in Cisco Systems IOS and IOS XE software to remove a\u00a0stack overflow condition in the software\u2019s Simple Network Management Protocol (SNMP) subsystem or risk nasty attacks, say experts. \u201cI wouldn\u2019t delay patching,\u201d says David Shipley, head of Canadian security awareness firm Beauceron Security, because with the release of [&hellip;]<\/p>\n","protected":false},"author":0,"featured_media":5048,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[],"class_list":["post-5047","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-education"],"_links":{"self":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts\/5047"}],"collection":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=5047"}],"version-history":[{"count":0,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts\/5047\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/media\/5048"}],"wp:attachment":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=5047"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=5047"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=5047"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}