CVE-2025-20144

Published: Mar 12, 2025Modified: Aug 4, 2025

5.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

Exploitability: 3.9 / Impact: 1.4

Source: NVD

Description

A vulnerability in the hybrid access control list (ACL) processing of IPv4 packets in Cisco IOS XR Software could allow an unauthenticated, remote attacker to bypass a configured ACL. This vulnerability is due to incorrect handling of packets when a specific configuration of the hybrid ACL exists. An attacker could exploit this vulnerability by attempting to send traffic through an affected device. A successful exploit could allow the attacker to bypass a configured ACL on the affected device. For more information, see the section of this advisory. Cisco has released software updates that address this vulnerability. There are workarounds that address this vulnerability.

Affected (43)

Products: Cisco: Ios Xr

Cisco

1 product

Ios Xr

Configuration A

43 vulnerable · 38 platform

Vulnerable Software	Affected Versions
Cisco Ios Xr	Version 6.5.1
Cisco Ios Xr	Version 6.5.2
Cisco Ios Xr	Version 6.5.3
Cisco Ios Xr	Version 6.5.92
Cisco Ios Xr	Version 6.5.93
Cisco Ios Xr	Version 6.6.1
Cisco Ios Xr	Version 6.6.25
Cisco Ios Xr	Version 6.6.2
Cisco Ios Xr	Version 6.6.3
Cisco Ios Xr	Version 6.6.4
Cisco Ios Xr	Version 7.0.1
Cisco Ios Xr	Version 7.0.2
Cisco Ios Xr	Version 7.0.90
Cisco Ios Xr	Version 7.1.1
Cisco Ios Xr	Version 7.1.2
Cisco Ios Xr	Version 7.10.1
Cisco Ios Xr	Version 7.10.2
Cisco Ios Xr	Version 7.11.1
Cisco Ios Xr	Version 7.2.1
Cisco Ios Xr	Version 7.2.2
Cisco Ios Xr	Version 7.3.1
Cisco Ios Xr	Version 7.3.2
Cisco Ios Xr	Version 7.3.3
Cisco Ios Xr	Version 7.3.4
Cisco Ios Xr	Version 7.3.5
Cisco Ios Xr	Version 7.3.6
Cisco Ios Xr	Version 7.4.1
Cisco Ios Xr	Version 7.4.2
Cisco Ios Xr	Version 7.5.1
Cisco Ios Xr	Version 7.5.2
Cisco Ios Xr	Version 7.5.3
Cisco Ios Xr	Version 7.5.4
Cisco Ios Xr	Version 7.5.5
Cisco Ios Xr	Version 7.6.1
Cisco Ios Xr	Version 7.6.2
Cisco Ios Xr	Version 7.7.1
Cisco Ios Xr	Version 7.7.21
Cisco Ios Xr	Version 7.7.2
Cisco Ios Xr	Version 7.8.1
Cisco Ios Xr	Version 7.8.22
Cisco Ios Xr	Version 7.8.2
Cisco Ios Xr	Version 7.9.1
Cisco Ios Xr	Version 7.9.2

Running on/with	Platform Versions
Cisco Ncs 540 12z20g Sys A	All versions
Cisco Ncs 540 12z20g Sys D	All versions
Cisco Ncs 540 24q2c2dd Sys	All versions
Cisco Ncs 540 24q8l2dd Sys	All versions
Cisco Ncs 540 24z8q2c Sys	All versions
Cisco Ncs 540 28z4c Sys A	All versions
Cisco Ncs 540 28z4c Sys D	All versions
Cisco Ncs 540 6z14s Sys D	All versions
Cisco Ncs 540 6z18g Sys A	All versions
Cisco Ncs 540 6z18g Sys D	All versions
Cisco Ncs 540 Acc Sys	All versions
Cisco Ncs 540 Fh Agg	All versions
Cisco Ncs 540 Fh Csr Sys	All versions
Cisco Ncs 540x 12z16g Sys A	All versions
Cisco Ncs 540x 12z16g Sys D	All versions
Cisco Ncs 540x 16z4g8q2c A	All versions
Cisco Ncs 540x 16z4g8q2c D	All versions
Cisco Ncs 540x 16z8q2c D	All versions
Cisco Ncs 540x 4z14g2q A	All versions
Cisco Ncs 540x 4z14g2q D	All versions
Cisco Ncs 540x 6z18g Sys A	All versions
Cisco Ncs 540x 6z18g Sys D	All versions
Cisco Ncs 540x 8z16g Sys A	All versions
Cisco Ncs 540x 8z16g Sys D	All versions
Cisco Ncs 540x Acc Sys	All versions
Cisco Ncs 5501	All versions
Cisco Ncs 5501 Se	All versions
Cisco Ncs 5502	All versions
Cisco Ncs 5502 Se	All versions
Cisco Ncs 5508	All versions
Cisco Ncs 5516	All versions
Cisco Ncs 560 4	All versions
Cisco Ncs 560 7	All versions
Cisco Ncs 57b1 5dse Sys	All versions
Cisco Ncs 57b1 6d24 Sys	All versions
Cisco Ncs 57c1 48q6 Sys	All versions
Cisco Ncs 57c3 Mod Sys	All versions
Cisco Ncs 57d2 18dd Sys	All versions

Related CWEs

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

References (2)

https://blog.apnic.net/2024/09/02/crafting-endless-as-paths-in-bgp/

Source: psirt@cisco.com

Technical Description

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ncs-hybridacl-crMZFfKQ

Source: psirt@cisco.com

Vendor Advisory

Timeline

No history available yet.