Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-20196

A vulnerability in the Cisco IOx application hosting environment of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the Cisco IOx application hosting environment to stop responding, resulting in a denial of service (DoS) condition. This vulnerability is due to the improper handling of HTTP requests. An attacker could exploit this vulnerability by sending crafted HTTP requests to an affected device. A successful exploit could allow the attacker to cause the Cisco IOx application hosting environment to stop responding. The IOx process will need to be manually restarted to recover services.

Published

2025-05-07T18:15:39.927

Last Modified

2025-07-11T14:55:33.920

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 5.3 (MEDIUM)

Weaknesses

Type: Primary
CWE-307

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	cisco	ios_xe	16.1.1	Yes
Operating System	cisco	ios_xe	16.1.2	Yes
Operating System	cisco	ios_xe	16.1.3	Yes
Operating System	cisco	ios_xe	16.2.1	Yes
Operating System	cisco	ios_xe	16.2.2	Yes
Operating System	cisco	ios_xe	16.3.1	Yes
Operating System	cisco	ios_xe	16.3.1a	Yes
Operating System	cisco	ios_xe	16.3.2	Yes
Operating System	cisco	ios_xe	16.3.3	Yes
Operating System	cisco	ios_xe	16.3.4	Yes
Operating System	cisco	ios_xe	16.3.5	Yes
Operating System	cisco	ios_xe	16.3.5b	Yes
Operating System	cisco	ios_xe	16.3.6	Yes
Operating System	cisco	ios_xe	16.3.7	Yes
Operating System	cisco	ios_xe	16.3.8	Yes
Operating System	cisco	ios_xe	16.3.9	Yes
Operating System	cisco	ios_xe	16.3.10	Yes
Operating System	cisco	ios_xe	16.3.11	Yes
Operating System	cisco	ios_xe	16.4.1	Yes
Operating System	cisco	ios_xe	16.4.2	Yes
Operating System	cisco	ios_xe	16.4.3	Yes
Operating System	cisco	ios_xe	16.5.1	Yes
Operating System	cisco	ios_xe	16.5.1a	Yes
Operating System	cisco	ios_xe	16.5.1b	Yes
Operating System	cisco	ios_xe	16.5.2	Yes
Operating System	cisco	ios_xe	16.5.3	Yes
Operating System	cisco	ios_xe	17.1.1	Yes
Operating System	cisco	ios_xe	17.1.1a	Yes
Operating System	cisco	ios_xe	17.1.1s	Yes
Operating System	cisco	ios_xe	17.1.1t	Yes
Operating System	cisco	ios_xe	17.1.3	Yes
Operating System	cisco	ios_xe	17.2.1	Yes
Operating System	cisco	ios_xe	17.2.1a	Yes
Operating System	cisco	ios_xe	17.2.1r	Yes
Operating System	cisco	ios_xe	17.2.1v	Yes
Operating System	cisco	ios_xe	17.2.2	Yes
Operating System	cisco	ios_xe	17.2.3	Yes
Operating System	cisco	ios_xe	17.3.1	Yes
Operating System	cisco	ios_xe	17.3.1a	Yes
Operating System	cisco	ios_xe	17.3.1w	Yes
Operating System	cisco	ios_xe	17.3.1x	Yes
Operating System	cisco	ios_xe	17.3.1z	Yes
Operating System	cisco	ios_xe	17.3.2	Yes
Operating System	cisco	ios_xe	17.3.2a	Yes
Operating System	cisco	ios_xe	17.3.3	Yes
Operating System	cisco	ios_xe	17.3.4	Yes
Operating System	cisco	ios_xe	17.3.4a	Yes
Operating System	cisco	ios_xe	17.3.4b	Yes
Operating System	cisco	ios_xe	17.3.4c	Yes
Operating System	cisco	ios_xe	17.3.5	Yes
Operating System	cisco	ios_xe	17.3.5a	Yes
Operating System	cisco	ios_xe	17.3.5b	Yes
Operating System	cisco	ios_xe	17.3.6	Yes
Operating System	cisco	ios_xe	17.3.7	Yes
Operating System	cisco	ios_xe	17.3.8	Yes
Operating System	cisco	ios_xe	17.3.8a	Yes
Operating System	cisco	ios_xe	17.4.1	Yes
Operating System	cisco	ios_xe	17.4.1a	Yes
Operating System	cisco	ios_xe	17.4.1b	Yes
Operating System	cisco	ios_xe	17.4.2	Yes
Operating System	cisco	ios_xe	17.4.2a	Yes
Operating System	cisco	ios_xe	17.5.1	Yes
Operating System	cisco	ios_xe	17.5.1a	Yes
Operating System	cisco	ios_xe	17.6.1	Yes
Operating System	cisco	ios_xe	17.6.1a	Yes
Operating System	cisco	ios_xe	17.6.1w	Yes
Operating System	cisco	ios_xe	17.6.1x	Yes
Operating System	cisco	ios_xe	17.6.1y	Yes
Operating System	cisco	ios_xe	17.6.1z	Yes
Operating System	cisco	ios_xe	17.6.1z1	Yes
Operating System	cisco	ios_xe	17.6.2	Yes
Operating System	cisco	ios_xe	17.6.3	Yes
Operating System	cisco	ios_xe	17.6.3a	Yes
Operating System	cisco	ios_xe	17.6.4	Yes
Operating System	cisco	ios_xe	17.6.5	Yes
Operating System	cisco	ios_xe	17.6.5a	Yes
Operating System	cisco	ios_xe	17.6.6	Yes
Operating System	cisco	ios_xe	17.6.6a	Yes
Operating System	cisco	ios_xe	17.6.7	Yes
Operating System	cisco	ios_xe	17.6.8	Yes
Operating System	cisco	ios_xe	17.6.8a	Yes
Operating System	cisco	ios_xe	17.7.1	Yes
Operating System	cisco	ios_xe	17.7.1a	Yes
Operating System	cisco	ios_xe	17.7.1b	Yes
Operating System	cisco	ios_xe	17.7.2	Yes
Operating System	cisco	ios_xe	17.8.1	Yes
Operating System	cisco	ios_xe	17.8.1a	Yes
Operating System	cisco	ios_xe	17.9.1	Yes
Operating System	cisco	ios_xe	17.9.1a	Yes
Operating System	cisco	ios_xe	17.9.1w	Yes
Operating System	cisco	ios_xe	17.9.1x	Yes
Operating System	cisco	ios_xe	17.9.1x1	Yes
Operating System	cisco	ios_xe	17.9.1y	Yes
Operating System	cisco	ios_xe	17.9.1y1	Yes
Operating System	cisco	ios_xe	17.9.2	Yes
Operating System	cisco	ios_xe	17.9.2a	Yes
Operating System	cisco	ios_xe	17.9.3	Yes
Operating System	cisco	ios_xe	17.9.3a	Yes
Operating System	cisco	ios_xe	17.9.4	Yes
Operating System	cisco	ios_xe	17.9.4a	Yes
Operating System	cisco	ios_xe	17.9.5	Yes
Operating System	cisco	ios_xe	17.9.5a	Yes
Operating System	cisco	ios_xe	17.9.5b	Yes
Operating System	cisco	ios_xe	17.9.5e	Yes
Operating System	cisco	ios_xe	17.9.5f	Yes
Operating System	cisco	ios_xe	17.9.6	Yes
Operating System	cisco	ios_xe	17.9.6a	Yes
Operating System	cisco	ios_xe	17.10.1	Yes
Operating System	cisco	ios_xe	17.10.1a	Yes
Operating System	cisco	ios_xe	17.10.1b	Yes
Operating System	cisco	ios_xe	17.11.1	Yes
Operating System	cisco	ios_xe	17.11.1a	Yes
Operating System	cisco	ios_xe	17.11.99sw	Yes
Operating System	cisco	ios_xe	17.12.1	Yes
Operating System	cisco	ios_xe	17.12.1a	Yes
Operating System	cisco	ios_xe	17.12.1w	Yes
Operating System	cisco	ios_xe	17.12.1x	Yes
Operating System	cisco	ios_xe	17.12.1y	Yes
Operating System	cisco	ios_xe	17.12.1z	Yes
Operating System	cisco	ios_xe	17.12.1z1	Yes
Operating System	cisco	ios_xe	17.12.1z2	Yes
Operating System	cisco	ios_xe	17.12.1z4	Yes
Operating System	cisco	ios_xe	17.12.2	Yes
Operating System	cisco	ios_xe	17.12.2a	Yes
Operating System	cisco	ios_xe	17.12.3	Yes
Operating System	cisco	ios_xe	17.12.3a	Yes
Operating System	cisco	ios_xe	17.12.4	Yes
Operating System	cisco	ios_xe	17.12.4a	Yes
Operating System	cisco	ios_xe	17.12.4b	Yes
Operating System	cisco	ios_xe	17.13.1	Yes
Operating System	cisco	ios_xe	17.13.1a	Yes
Operating System	cisco	ios_xe	17.14.1	Yes
Operating System	cisco	ios_xe	17.14.1a	Yes
Operating System	cisco	ios_xe	17.15.2	Yes
Operating System	cisco	ios_xe	17.15.2a	Yes
Operating System	cisco	ios_xe	17.15.2b	Yes
Operating System	cisco	ios_xe	17.15.2c	Yes
Operating System	cisco	cgr1000_firmware	< 15.9\(3\)m12	Yes
Hardware	cisco	cgr1000	-	No
Operating System	cisco	ir510_wpan_firmware	-	Yes
Hardware	cisco	ir510_wpan	-	No
Operating System	cisco	ic3000_industrial_compute_gateway_firmware	< 1.5.2	Yes
Hardware	cisco	ic3000_industrial_compute_gateway	-	No
Operating System	cisco	807_industrial_integrated_services_router_firmware	< 15.9\(3\)m11	Yes
Hardware	cisco	807_industrial_integrated_services_router	-	No
Operating System	cisco	809_industrial_integrated_services_router_firmware	< 15.9\(3\)m11	Yes
Hardware	cisco	809_industrial_integrated_services_router	-	No
Operating System	cisco	829_industrial_integrated_services_router_firmware	< 15.9\(3\)m11	Yes
Hardware	cisco	829_industrial_integrated_services_router	-	No
Operating System	cisco	ios_xe	< 17.15.2	Yes
Hardware	cisco	catalyst_9100	-	No
Hardware	cisco	catalyst_9105	-	No
Hardware	cisco	catalyst_9105ax	-	No
Hardware	cisco	catalyst_9105axi	-	No
Hardware	cisco	catalyst_9105axw	-	No
Hardware	cisco	catalyst_9105i	-	No
Hardware	cisco	catalyst_9105w	-	No
Hardware	cisco	catalyst_9115	-	No
Hardware	cisco	catalyst_9115_ap	-	No
Hardware	cisco	catalyst_9115ax	-	No
Hardware	cisco	catalyst_9115axe	-	No
Hardware	cisco	catalyst_9115axi	-	No
Hardware	cisco	catalyst_9117	-	No
Hardware	cisco	catalyst_9117_ap	-	No
Hardware	cisco	catalyst_9117ax	-	No
Hardware	cisco	catalyst_9117axi	-	No
Hardware	cisco	catalyst_9120	-	No
Hardware	cisco	catalyst_9120_ap	-	No
Hardware	cisco	catalyst_9120ax	-	No
Hardware	cisco	catalyst_9120axe	-	No
Hardware	cisco	catalyst_9120axi	-	No
Hardware	cisco	catalyst_9120axp	-	No
Hardware	cisco	catalyst_9124	-	No
Hardware	cisco	catalyst_9124ax	-	No
Hardware	cisco	catalyst_9124axd	-	No
Hardware	cisco	catalyst_9124axi	-	No
Hardware	cisco	catalyst_9124d	-	No
Hardware	cisco	catalyst_9124e	-	No
Hardware	cisco	catalyst_9124i	-	No
Hardware	cisco	catalyst_9130	-	No
Hardware	cisco	catalyst_9130_ap	-	No
Hardware	cisco	catalyst_9130ax	-	No
Hardware	cisco	catalyst_9130axe	-	No
Hardware	cisco	catalyst_9130axi	-	No
Hardware	cisco	catalyst_9136	-	No
Hardware	cisco	catalyst_9162	-	No
Hardware	cisco	catalyst_9164	-	No
Hardware	cisco	catalyst_9166	-	No
Hardware	cisco	catalyst_9166d1	-	No

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iox-dos-95Fqnf7b Vendor Advisory ([email protected])