CVE-2025-20181

NONE EPSS 5.5%
Published May 7, 20251y ago · Modified Jun 17, 20262w ago
Find Similar
Published May 7, 2025 1y ago
Last Modified Jun 17, 2026 2w ago

Description

A vulnerability in Cisco IOS Software for Cisco Catalyst 2960X, 2960XR, 2960CX, and 3560CX Series Switches could allow an authenticated, local attacker with privilege level 15 or an unauthenticated attacker with physical access to the device to execute persistent code at boot time and break the chain of trust. This vulnerability is due to missing signature verification for specific files that may be loaded during the device boot process. An attacker could exploit this vulnerability by placing a crafted file into a specific location on an affected device. A successful exploit could allow the attacker to execute arbitrary code at boot time. Because this allows the attacker to bypass a major security feature of the device, Cisco has raised the Security Impact Rating (SIR) of this advisory from Medium to High.

Threat Intelligence

EPSS Exploit Probability
5.5% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-347

Affected Products 149

VendorProductVersionRange
ciscoios15.0\(1\)exany
ciscoios15.0\(1\)eyany
ciscoios15.0\(1\)ey1any
ciscoios15.0\(1\)ey2any
ciscoios15.0\(1\)xoany
ciscoios15.0\(1\)xo1any
ciscoios15.0\(2\)exany
ciscoios15.0\(2\)ex1any
ciscoios15.0\(2\)ex2any
ciscoios15.0\(2\)ex3any
ciscoios15.0\(2\)ex4any
ciscoios15.0\(2\)ex5any
ciscoios15.0\(2\)ex8any
ciscoios15.0\(2\)ex10any
ciscoios15.0\(2\)ex11any
ciscoios15.0\(2\)ex12any
ciscoios15.0\(2\)ex13any
ciscoios15.0\(2\)se8any
ciscoios15.0\(2\)sqdany
ciscoios15.0\(2\)sqd1any
ciscoios15.0\(2\)sqd2any
ciscoios15.0\(2\)sqd3any
ciscoios15.0\(2\)sqd4any
ciscoios15.0\(2\)sqd5any
ciscoios15.0\(2\)sqd6any
ciscoios15.0\(2\)sqd7any
ciscoios15.0\(2\)sqd8any
ciscoios15.0\(2\)xoany
ciscoios15.0\(2a\)ex5any
ciscoios15.2\(2\)eany
ciscoios15.2\(2\)e1any
ciscoios15.2\(2\)e2any
ciscoios15.2\(2\)e3any
ciscoios15.2\(2\)e4any
ciscoios15.2\(2\)e5any
ciscoios15.2\(2\)e5aany
ciscoios15.2\(2\)e5bany
ciscoios15.2\(2\)e6any
ciscoios15.2\(2\)e7any
ciscoios15.2\(2\)e8any
ciscoios15.2\(2\)e9any
ciscoios15.2\(2\)e10any
ciscoios15.2\(2a\)e1any
ciscoios15.2\(2a\)e2any
ciscoios15.2\(3\)eany
ciscoios15.2\(3\)e1any
ciscoios15.2\(3\)e2any
ciscoios15.2\(3\)e3any
ciscoios15.2\(3\)e4any
ciscoios15.2\(3a\)eany
ciscoios15.2\(4\)eany
ciscoios15.2\(4\)e1any
ciscoios15.2\(4\)e2any
ciscoios15.2\(4\)e3any
ciscoios15.2\(4\)e4any
ciscoios15.2\(4\)e5any
ciscoios15.2\(4\)e6any
ciscoios15.2\(4\)e7any
ciscoios15.2\(4\)e8any
ciscoios15.2\(4\)e9any
ciscoios15.2\(4\)e10any
ciscoios15.2\(4\)e10aany
ciscoios15.2\(4\)e10dany
ciscoios15.2\(4\)ea7any
ciscoios15.2\(4\)ea8any
ciscoios15.2\(4\)ea9any
ciscoios15.2\(4\)ea9aany
ciscoios15.2\(5\)eany
ciscoios15.2\(5\)e1any
ciscoios15.2\(5\)e2any
ciscoios15.2\(5b\)eany
ciscoios15.2\(6\)eany
ciscoios15.2\(6\)e0aany
ciscoios15.2\(6\)e0cany
ciscoios15.2\(6\)e1any
ciscoios15.2\(6\)e2any
ciscoios15.2\(6\)e2aany
ciscoios15.2\(6\)e2bany
ciscoios15.2\(6\)e3any
ciscoios15.2\(6\)ebany
ciscoios15.2\(7\)eany
ciscoios15.2\(7\)e0aany
ciscoios15.2\(7\)e0bany
ciscoios15.2\(7\)e0sany
ciscoios15.2\(7\)e1any
ciscoios15.2\(7\)e1aany
ciscoios15.2\(7\)e2any
ciscoios15.2\(7\)e2aany
ciscoios15.2\(7\)e3any
ciscoios15.2\(7\)e3kany
ciscoios15.2\(7\)e4any
ciscoios15.2\(7\)e5any
ciscoios15.2\(7\)e6any
ciscoios15.2\(7\)e7any
ciscoios15.2\(7\)e8any
ciscoios15.2\(7\)e9any
ciscoios15.2\(7\)e10any
ciscoios15.2\(7a\)e0bany
ciscoios15.2\(7b\)e0bany
ciscoios15.2\(8\)eany
ciscoios15.2\(8\)e1any
ciscoios15.2\(8\)e2any
ciscoios15.2\(8\)e3any
ciscoios15.2\(8\)e4any
ciscoios15.2\(8\)e5any
ciscoios15.2\(8\)e6any
ciscocatalyst_2960cx-8pc-l*any
ciscocatalyst_2960cx-8tc-l*any
ciscocatalyst_2960x-24pd-l*any
ciscocatalyst_2960x-24ps-l*any
ciscocatalyst_2960x-24psq-l*any
ciscocatalyst_2960x-24psq-l_cool*any
ciscocatalyst_2960x-24td-l*any
ciscocatalyst_2960x-24ts-l*any
ciscocatalyst_2960x-24ts-ll*any
ciscocatalyst_2960x-48fpd-l*any
ciscocatalyst_2960x-48fps-l*any
ciscocatalyst_2960x-48lpd-l*any
ciscocatalyst_2960x-48lps-l*any
ciscocatalyst_2960x-48td-l*any
ciscocatalyst_2960x-48ts-l*any
ciscocatalyst_2960x-48ts-ll*any
ciscocatalyst_2960xr-24pd-i*any
ciscocatalyst_2960xr-24pd-l*any
ciscocatalyst_2960xr-24ps-i*any
ciscocatalyst_2960xr-24ps-l*any
ciscocatalyst_2960xr-24td-i*any
ciscocatalyst_2960xr-24td-l*any
ciscocatalyst_2960xr-24ts-i*any
ciscocatalyst_2960xr-24ts-l*any
ciscocatalyst_2960xr-48fpd-i*any
ciscocatalyst_2960xr-48fpd-l*any
ciscocatalyst_2960xr-48fps-i*any
ciscocatalyst_2960xr-48fps-l*any
ciscocatalyst_2960xr-48lpd-i*any
ciscocatalyst_2960xr-48lpd-l*any
ciscocatalyst_2960xr-48lps-i*any
ciscocatalyst_2960xr-48lps-l*any
ciscocatalyst_2960xr-48td-i*any
ciscocatalyst_2960xr-48td-l*any
ciscocatalyst_2960xr-48ts-i*any
ciscocatalyst_2960xr-48ts-l*any
ciscocatalyst_3560cx-12pc-s*any
ciscocatalyst_3560cx-12pd-s*any
ciscocatalyst_3560cx-12tc-s*any
ciscocatalyst_3560cx-8pc-s*any
ciscocatalyst_3560cx-8pt-s*any
ciscocatalyst_3560cx-8tc-s*any
ciscocatalyst_3560cx-8xpd-s*any

References 1

  • sec.cloudapps.cisco.com https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-c2960-3560-sboot-ZtqADrHq
    Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.