CVE-2025-20144

{"id": "CVE-2025-20144", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "psirt@cisco.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 4.0, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 2.2}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 5.8, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 3.9}]}, "published": "2025-03-12T16:15:21.890", "references": [{"url": "https://blog.apnic.net/2024/09/02/crafting-endless-as-paths-in-bgp/", "tags": ["Technical Description"], "source": "psirt@cisco.com"}, {"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ncs-hybridacl-crMZFfKQ", "tags": ["Vendor Advisory"], "source": "psirt@cisco.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "psirt@cisco.com", "description": [{"lang": "en", "value": "CWE-284"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in the hybrid access control list (ACL) processing of IPv4 packets in Cisco IOS XR Software could allow an unauthenticated, remote attacker to bypass a configured ACL.\r\n\r\nThis vulnerability is due to incorrect handling of packets when a specific configuration of the hybrid ACL exists. An attacker could exploit this vulnerability by attempting to send traffic through an affected device. A successful exploit could allow the attacker to bypass a configured ACL on the affected device.\r\nFor more information, see the section of this advisory.\r\nCisco has released software updates that address this vulnerability. There are workarounds that address this vulnerability."}, {"lang": "es", "value": "Una vulnerabilidad en el procesamiento de la lista de control de acceso (ACL) h\u00edbrida de paquetes IPv4 en el software Cisco IOS XR podr\u00eda permitir que un atacante remoto no autenticado omita una ACL configurada. Esta vulnerabilidad se debe a una gesti\u00f3n incorrecta de paquetes cuando existe una configuraci\u00f3n espec\u00edfica de la ACL h\u00edbrida. Un atacante podr\u00eda explotar esta vulnerabilidad intentando enviar tr\u00e1fico a trav\u00e9s de un dispositivo afectado. Una explotaci\u00f3n exitosa podr\u00eda permitirle omitir una ACL configurada en el dispositivo afectado. Para obtener m\u00e1s informaci\u00f3n, consulte la secci\u00f3n de este aviso. Cisco ha publicado actualizaciones de software que solucionan esta vulnerabilidad. Existen workarounds que la solucionan."}], "lastModified": "2025-08-04T12:02:45.527", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:cisco:ios_xr:6.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B2FD2C84-CD64-4C1C-BC38-2F7A2A6EEF45"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:6.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2DE98B34-501B-449A-843A-58F297EDBE1B"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:6.5.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "86E05C3F-4095-4B9C-8C11-E32567EB14AC"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:6.5.92:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6CFC77F8-4131-42E1-93A4-13149BDCDC1D"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:6.5.93:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "676F3DD0-6081-4C37-8E4F-210BC59C3C09"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:6.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "54EA6C52-E541-4426-A3DF-2FA88CA28BA1"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:6.6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B8AE8971-5003-4A39-8173-E17CE9C2523F"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:6.6.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "36944A2B-E4F5-41DE-AC4D-55BFA603BE5E"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:6.6.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4E6EA55E-05BA-483F-AAE1-DD573D22D6A9"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:6.6.25:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3DC7F758-5AB7-4A45-A889-BE9DD8D0474E"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "82AF763B-9299-4EDC-B42D-B83736839CA1"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F70AB37-3C0B-40A8-BC37-5A79DA5F45F6"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.0.90:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2E5C0909-27D8-4B6E-A644-9B8ADFA24266"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E90BEFD1-AAA5-4D39-A180-4B5ED3427AFC"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8B842317-A5DB-4890-948A-DD26B7AE2540"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B7FE3667-1B5E-48FB-B3BB-1C1854FFEE72"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2B0370A9-E422-4109-81A3-DE2118A20827"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "82CD7F68-9569-43F4-88ED-96F9A15C065D"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.3.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D2C4C062-F816-41FE-ADAD-F994F4FA4A07"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.3.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A07E9C56-D143-45FA-99FF-30F54A828BF6"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.3.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F406EAA7-0607-419F-97E3-7ACEC8A3FA5B"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.3.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DB9D0641-28F8-4CCB-AEC3-205409D1704A"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.3.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1ECA7B4C-8FDD-4053-B37B-E5E0969C0CB4"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "40C6D7C4-A5D9-4365-9664-EF35586925AA"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.4.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EC41A004-2029-4E22-A88F-2B93D9786B6C"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "57F7D7FD-24A8-4DD4-8280-A18244059F34"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7A7448D1-BC19-45AB-BF6F-3434F8CA2CC8"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.5.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7A057808-1BCA-4C7C-A2D9-0BD5B09D20F6"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.5.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A7D09FC0-73C5-4F7A-8013-0B0E5CC834FB"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.5.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DFA4A8AF-348D-4F90-B1CB-AE784E0A6EBE"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6C95648D-A37A-446B-B106-12612C00A34D"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4DF31489-C029-4D4C-8401-26873FC469E3"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.7.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1807BE16-BAA9-4BC6-B98A-13D584A12821"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.7.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "375746CB-695E-4019-89C9-42ED37A5E958"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.7.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CE7D05C0-4065-448B-AAC6-F29E379F3DA6"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.8.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D8ADA2B1-FD5A-4900-953B-30951C8EF9AE"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.8.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9B4C7223-3EFB-48C2-BE22-941F60826D0C"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.8.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4EE83701-C0B7-4ED2-866B-44B7F54FCA0F"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.9.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "164B241C-397A-4921-BC5B-F928A21E91C2"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.9.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FAD3875D-D283-4961-BE31-750FDF9CDF56"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.10.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BAEC28C0-8091-49F9-88D1-CB96234BF52A"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.10.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E1ED2B72-A65C-47E4-87B3-D83F29428396"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.11.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8904CAA5-4E01-462C-AE57-067902CD95FC"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:cisco:ncs_540-12z20g-sys-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D5494B4B-0BB4-48AE-8B0D-04DE649F9313"}, {"criteria": "cpe:2.3:h:cisco:ncs_540-12z20g-sys-d:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B3A0C835-6C98-4AB6-89FF-C27117BB6B12"}, {"criteria": "cpe:2.3:h:cisco:ncs_540-24q2c2dd-sys:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "24550EBB-6FEE-4916-B58A-5FD8E45E962B"}, {"criteria": "cpe:2.3:h:cisco:ncs_540-24q8l2dd-sys:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AAD71DBE-AE18-49FA-826E-52D87A73F496"}, {"criteria": "cpe:2.3:h:cisco:ncs_540-24z8q2c-sys:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "395F25CD-FDF5-48D7-A048-A6B4F4779EC9"}, {"criteria": "cpe:2.3:h:cisco:ncs_540-28z4c-sys-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2E926BBC-F5C5-4D02-8A62-F1A5DE3C54DA"}, {"criteria": "cpe:2.3:h:cisco:ncs_540-28z4c-sys-d:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EFB1323A-C472-4EA1-A969-1D1C10AB0CE8"}, {"criteria": "cpe:2.3:h:cisco:ncs_540-6z14s-sys-d:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A64FB4E3-4393-4A89-B6FB-E990D33427C5"}, {"criteria": "cpe:2.3:h:cisco:ncs_540-6z18g-sys-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E2E585D1-F2E7-4CBE-ACA2-6552ACDF492A"}, {"criteria": "cpe:2.3:h:cisco:ncs_540-6z18g-sys-d:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "44BB03A0-9152-444B-B5CD-70F4CBD53D03"}, {"criteria": "cpe:2.3:h:cisco:ncs_540-acc-sys:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "124CE49C-1C2B-40A5-8F59-7A223766E12F"}, {"criteria": "cpe:2.3:h:cisco:ncs_540-fh-agg:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3D7DFE35-76BA-4BAE-9C4B-0625DAE573B0"}, {"criteria": "cpe:2.3:h:cisco:ncs_540-fh-csr-sys:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1645EAA7-0847-4418-BA9B-FA8E36B59626"}, {"criteria": "cpe:2.3:h:cisco:ncs_540x-12z16g-sys-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A83F3D33-0674-4F74-AEA9-BC824D8536F5"}, {"criteria": "cpe:2.3:h:cisco:ncs_540x-12z16g-sys-d:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "784A450D-8DCA-43E5-8044-A9F2363FB006"}, {"criteria": "cpe:2.3:h:cisco:ncs_540x-16z4g8q2c-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "92E88ED4-C2AF-407C-A395-3D7806D68758"}, {"criteria": "cpe:2.3:h:cisco:ncs_540x-16z4g8q2c-d:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2DA11E43-F821-45F6-A2DB-E1EBC8BDE68B"}, {"criteria": "cpe:2.3:h:cisco:ncs_540x-16z8q2c-d:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A93F10D9-CF79-4DF2-964C-D423D1C1D993"}, {"criteria": "cpe:2.3:h:cisco:ncs_540x-4z14g2q-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A52A23CF-2D33-46CD-9784-D54826F63C71"}, {"criteria": "cpe:2.3:h:cisco:ncs_540x-4z14g2q-d:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BB9BD2FE-BADB-489F-B832-2EF53F8679E6"}, {"criteria": "cpe:2.3:h:cisco:ncs_540x-6z18g-sys-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "42610AAA-9830-44C3-8D1D-2433FCA0541B"}, {"criteria": "cpe:2.3:h:cisco:ncs_540x-6z18g-sys-d:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "31CE816F-858C-421A-99D1-FCD4BB5FAD47"}, {"criteria": "cpe:2.3:h:cisco:ncs_540x-8z16g-sys-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2C4A522F-560C-438D-AB68-BF0175C06F78"}, {"criteria": "cpe:2.3:h:cisco:ncs_540x-8z16g-sys-d:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A405E23C-24BC-42C8-99DB-D8E5EFD98261"}, {"criteria": "cpe:2.3:h:cisco:ncs_540x-acc-sys:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "871D84C5-71EE-4B82-A48C-A1CC68DA332A"}, {"criteria": "cpe:2.3:h:cisco:ncs_5501:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0A972EFE-4F7E-4BFC-8631-66A2D16B74A3"}, {"criteria": "cpe:2.3:h:cisco:ncs_5501-se:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1B254955-C485-45D7-A19B-E78CE1D997AD"}, {"criteria": "cpe:2.3:h:cisco:ncs_5502:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7F72AEF0-EE70-40F8-B52B-1390820B87BB"}, {"criteria": "cpe:2.3:h:cisco:ncs_5502-se:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "50C7B71A-2559-4E90-BAAA-C6FAAFE35FC3"}, {"criteria": "cpe:2.3:h:cisco:ncs_5508:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "43D21B01-A754-474F-8E46-14D733AB307E"}, {"criteria": "cpe:2.3:h:cisco:ncs_5516:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "17D6424C-972F-459C-B8F7-04FFD9F541BC"}, {"criteria": "cpe:2.3:h:cisco:ncs_560-4:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BB01E968-E838-4D3C-B603-BF7E4E0F8A2C"}, {"criteria": "cpe:2.3:h:cisco:ncs_560-7:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "08864A59-0840-4407-8D30-9CE34BAF05E7"}, {"criteria": "cpe:2.3:h:cisco:ncs_57b1-5dse-sys:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "13EEDD1C-25BC-4AFA-AF60-66DE36927528"}, {"criteria": "cpe:2.3:h:cisco:ncs_57b1-6d24-sys:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5CD3B06B-864E-4A35-B0C3-1654390022D2"}, {"criteria": "cpe:2.3:h:cisco:ncs_57c1-48q6-sys:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AD1B4F37-5AAA-4F40-8865-226289CB5CEB"}, {"criteria": "cpe:2.3:h:cisco:ncs_57c3-mod-sys:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "355F78C3-C07F-48C3-9B6E-55714EAA7331"}, {"criteria": "cpe:2.3:h:cisco:ncs_57d2-18dd-sys:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "976AC38F-5873-41ED-82B6-31C22FCC6BEE"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "psirt@cisco.com"}