CVE-2025-20126

Published: Jan 8, 2025Modified: Jul 22, 2025

4.8

Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

Exploitability: 2.2 / Impact: 2.5

Source: NVD

Description

A vulnerability in certification validation routines of Cisco ThousandEyes Endpoint Agent for macOS and RoomOS could allow an unauthenticated, remote attacker to intercept or manipulate metrics information. This vulnerability exists because the affected software does not properly validate certificates for hosted metrics services. An on-path attacker could exploit this vulnerability by intercepting network traffic using a crafted certificate. A successful exploit could allow the attacker to masquerade as a trusted host and monitor or change communications between the remote metrics service and the vulnerable client.

Affected (2)

Products: Cisco: Thousandeyes Endpoint Agent

Cisco

1 product

Thousandeyes Endpoint Agent

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cisco Thousandeyes Endpoint Agent	Before 1.206.3

Running on/with	Platform Versions
Apple Macos	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cisco Thousandeyes Endpoint Agent	Before 1.207.2

Running on/with	Platform Versions
Cisco Roomos	All versions

Related CWEs

CWE-295

Improper Certificate Validation

The product does not validate, or incorrectly validates, a certificate.

References (1)

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-thousandeyes-cert-pqtJUv9N

Source: psirt@cisco.com

Vendor Advisory

Timeline

No history available yet.