CVE-2025-20170

Summary

CVE-2025-20170 is a vulnerability affecting the SNMP subsystem in Cisco IOS Software and Cisco IOS XE Software. This issue stems from improper error handling when parsing SNMP requests, potentially allowing authenticated, remote attackers to cause a Denial of Service (DoS) condition on affected devices. The vulnerability is prevalent in SNMP versions 1, 2c, and 3. To exploit this vulnerability in SNMP v2c or earlier, an attacker needs a valid read-write or read-only SNMP community string for the targeted system. In the case of SNMP v3, a successful attack requires valid SNMP user credentials. Successful exploitation could lead to an unexpected reload of the device, resulting in a DoS condition.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.