—–BEGIN PGP SIGNED MESSAGE—–

Hash: SHA256

Denial of Service Vulnerability in CISCO 

Indian – Computer Emergency Response Team (https://www.cert-in.org.in)

Severity Rating: HIGH

Component Affected

IE 2000 Series

IE 3010 Series

IE 4000 Series

IE 4010 Series

IE 5000 Series

Overview

A vulnerability has been reported in the web UI of Cisco IOS Software could allow an authenticated, remote attacker with low privileges to cause a denial of service (DoS) condition on an affected device.

Target Audience: 

All IT administrators and individuals responsible for maintaining and updating in Cisco IOS Software.

Risk Assessment:

High risk of data manipulation and service disruption.

Impact Assessment:

Potential impact on confidentiality, integrity, and availability of the system.

Description

This vulnerability exists due to improper input validation. An attacker could exploit this vulnerability by sending a crafted URL in an HTTP request.

Successful exploitation of this vulnerability could allow the attacker to cause the affected device to reload, resulting in a DoS condition.

Solution

Apply appropriate updates as mentioned in Cisco Advisory

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-invalid-url-dos-Nvxszf6u

Vendor Information

CISCO

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-invalid-url-dos-Nvxszf6u

References

CISCO

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-invalid-url-dos-Nvxszf6u

CVE Name

CVE-2025-20327

– —

Thanks and Regards,

CERT-In

Incident Response Help Desk

e-mail: incident@cert-in.org.in

Phone: +91-11-22902657

Toll Free Number: 1800-11-4949

Toll Free Fax : 1800-11-6969

Web: http://www.cert-in.org.in

PGP Fingerprint: A768 083E 4475 5725 B81A A379 2156 C0C0 B620 D0B4

PGP Key information:

https://www.cert-in.org.in/s2cMainServlet?pageid=CONTACTUS

Postal address:

Indian Computer Emergency Response Team (CERT-In)

Ministry of Electronics and Information Technology

Government of India

Electronics Niketan

6, C.G.O. Complex

New Delhi-110 003

—–BEGIN PGP SIGNATURE—–

iQIzBAEBCAAdFiEE6r4Iam/Ey0c/KakL3jCgcSdcys8FAmjWnPsACgkQ3jCgcSdc

ys8mFBAAms4qqav915RE/nrkRtp+9Yb7QCOVp9RHwqAnIptc22kJj74k5s2eq71v

M/+2ri4gpP5Uo8KlMlQ1eMIldTj434V9OBRr3aT/5nNtClGRhCIeHApf9+ftyyXH

UB1yIEsM/Lpc8XVDjIflCnJd42/ntgp+ZSIz497U3POviRglKD9+uN1v3jhvz+lt

oVLGqw5mGyrVVXa1V72IiMDIwbRilmom50Y6P7y4b29v+c10IrGbbZdSwQyZGdK1

5ZhVWqKpkRKJ5wsHadzD1Vm8iJ/ARZUyu9oCAQ0+Pij+PM8wxc6bH+MIVZA6sJLU

KpzhOvAI3eHSBiNDWXLqhFxv8BPtelZp+X66s1gI3EvXub6yMbEHW/PhbGHuJ0L1

6FfaVynLg5u8HyvudkaIqePrUJRVwJY61cBe6VhubqHWpWL/A+qOuKHc7Hiatjey

NqZfXYMTCJT9R734CUuo7dIPpAyMfbhrh9cR5Om9V9OJiT4AApaHE0PTD114ziTT

MfZA9buRwPoWbnspahGetjkRnXZ1JsKdQtvpM0P+u84FGP9Mw20xi+g0mr9oKyDa

8wXYeFY3bKAamBYJc50GhpZ8K2h3ROMSxQGbvFj4HJXmjPl3ZXBTRQcd5RYOmWYE

8MV2C6gcYZYwf14MU/Mx05JImV82s+xBN7PhW2LmwKWvzh6xvBE=

=u9Qo

—–END PGP SIGNATURE—–