Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

fstec логотип

BDU:2025-10332

Опубликовано: 07 мая 2025
Источник: fstec
CVSS3: 6.8
CVSS2: 7.2
EPSS Низкий

Описание

Уязвимость операционных систем Cisco IOS сетевых устройств Catalyst 2960X, 2960XR, 2960CX и 3560CX Series Switches связана с некорректной проверкой криптографической подписи. Эксплуатация уязвимости может позволить нарушителю выполнить произвольный код

Вендор

Cisco Systems Inc.

Наименование ПО

Cisco IOS

Версия ПО

15.2(4)E (Cisco IOS)
15.2(2)E5b (Cisco IOS)
15.0(1)EY (Cisco IOS)
15.0(1)EY1 (Cisco IOS)
15.0(1)EY2 (Cisco IOS)
15.0(2)SE8 (Cisco IOS)
15.0(1)EX (Cisco IOS)
15.0(2)EX10 (Cisco IOS)
15.0(2)EX11 (Cisco IOS)
15.0(2)EX13 (Cisco IOS)
15.0(2)EX12 (Cisco IOS)
15.2(2)E (Cisco IOS)
15.2(3)E (Cisco IOS)
15.2(2)E1 (Cisco IOS)
15.2(3)E1 (Cisco IOS)
15.2(2)E2 (Cisco IOS)
15.2(2)E3 (Cisco IOS)
15.2(2a)E2 (Cisco IOS)
15.2(3)E2 (Cisco IOS)
15.2(3a)E (Cisco IOS)
15.2(3)E3 (Cisco IOS)
15.2(3m)E2 (Cisco IOS)
15.2(4)E1 (Cisco IOS)
15.2(2)E4 (Cisco IOS)
15.2(2)E5 (Cisco IOS)
15.2(4)E2 (Cisco IOS)
15.2(4m)E1 (Cisco IOS)
15.2(3)E4 (Cisco IOS)
15.2(5)E (Cisco IOS)
15.2(4)E3 (Cisco IOS)
15.2(2)E6 (Cisco IOS)
15.2(5)E1 (Cisco IOS)
15.2(4m)E3 (Cisco IOS)
15.2(3m)E8 (Cisco IOS)
15.2(2)E5a (Cisco IOS)
15.2(4n)E2 (Cisco IOS)
15.2(4o)E2 (Cisco IOS)
15.2(4)E4 (Cisco IOS)
15.2(2)E7 (Cisco IOS)
15.2(5)E2 (Cisco IOS)
15.2(4p)E1 (Cisco IOS)
15.2(6)E (Cisco IOS)
15.2(4)E5 (Cisco IOS)
15.2(4m)E2 (Cisco IOS)
15.2(4o)E3 (Cisco IOS)
15.2(4q)E1 (Cisco IOS)
15.2(6)E0a (Cisco IOS)
15.2(6)E0c (Cisco IOS)
15.0(2)EX (Cisco IOS)
15.0(2)EX1 (Cisco IOS)
15.0(2)EX2 (Cisco IOS)
15.0(2)EX3 (Cisco IOS)
15.0(2)EX4 (Cisco IOS)
15.0(2)EX5 (Cisco IOS)
15.0(2)EX6 (Cisco IOS)
15.0(2)EX7 (Cisco IOS)
15.0(2)EX8 (Cisco IOS)
15.0(2a)EX5 (Cisco IOS)
15.2(2b)E (Cisco IOS)
15.2(2a)E1 (Cisco IOS)
15.2(3m)E7 (Cisco IOS)
15.2(5b)E (Cisco IOS)
15.2(4s)E1 (Cisco IOS)
15.2(7)E (Cisco IOS)
12.2(6)I1 (Cisco IOS)
15.0(1)XO1 (Cisco IOS)
15.0(1)XO (Cisco IOS)
15.0(2)XO (Cisco IOS)
15.2(2)E8 (Cisco IOS)
15.2(6)E1 (Cisco IOS)
15.2(4)E6 (Cisco IOS)
15.2(2)E9 (Cisco IOS)
15.2(6)E1a (Cisco IOS)
15.2(4)E7 (Cisco IOS)
15.2(6)E1s (Cisco IOS)
15.2(2)E10 (Cisco IOS)
15.2(2)E9a (Cisco IOS)
15.2(4)EA7 (Cisco IOS)
15.2(4)EA8 (Cisco IOS)
15.2(4)EA9 (Cisco IOS)
15.0(2)SQD (Cisco IOS)
15.0(2)SQD1 (Cisco IOS)
15.0(2)SQD2 (Cisco IOS)
15.0(2)SQD3 (Cisco IOS)
15.0(2)SQD4 (Cisco IOS)
15.0(2)SQD5 (Cisco IOS)
15.0(2)SQD6 (Cisco IOS)
15.0(2)SQD7 (Cisco IOS)
15.0(2)SQD8 (Cisco IOS)
15.2(4)E8 (Cisco IOS)
15.1(3)SVR1 (Cisco IOS)
15.1(3)SVR2 (Cisco IOS)
15.1(3)SVR3 (Cisco IOS)
15.1(3)SVS (Cisco IOS)
15.1(3)SVS1 (Cisco IOS)
15.1(3)SVT1 (Cisco IOS)
15.1(3)SVT2 (Cisco IOS)
15.1(3)SVU1 (Cisco IOS)
15.2(4)E9 (Cisco IOS)
15.2(4)E10 (Cisco IOS)
15.2(4)E10A (Cisco IOS)
15.2(4)E10B (Cisco IOS)
15.2(4)EA9A (Cisco IOS)
15.2(6)E2 (Cisco IOS)
15.2(6)E2a (Cisco IOS)
15.2(6)E2b (Cisco IOS)
15.2(6)E3 (Cisco IOS)
15.2(6)Eb (Cisco IOS)
15.2(7)E0a (Cisco IOS)
15.2(7)E0b (Cisco IOS)
15.2(7)E0s (Cisco IOS)
15.2(7)E1 (Cisco IOS)
15.2(7)E1a (Cisco IOS)
15.2(7)E2 (Cisco IOS)
15.2(7)E2a (Cisco IOS)
15.2(7)E2b (Cisco IOS)
15.2(7)E3 (Cisco IOS)
15.2(7)E3k (Cisco IOS)
15.2(7)E5 (Cisco IOS)
15.2(7a)E0b (Cisco IOS)
15.2(7b)E0b (Cisco IOS)
15.2(8)E (Cisco IOS)
15.2(8)E1 (Cisco IOS)
15.2(7)E4 (Cisco IOS)
15.2(7)E6 (Cisco IOS)
15.2(8)E2 (Cisco IOS)
15.2(7)E7 (Cisco IOS)
15.2(8)E3 (Cisco IOS)
15.2(7)E8 (Cisco IOS)
15.2(8)E4 (Cisco IOS)
15.1(3)SVX (Cisco IOS)
15.1(3)SVX1 (Cisco IOS)
15.1(3)SVW (Cisco IOS)
15.1(3)SVW1 (Cisco IOS)
15.1(3)SVV1 (Cisco IOS)
15.1(3)SVV2 (Cisco IOS)
15.1(3)SVV3 (Cisco IOS)
15.1(3)SVV4 (Cisco IOS)
15.1(3)SVU10 (Cisco IOS)
15.1(3)SVU2 (Cisco IOS)
15.1(3)SVU11 (Cisco IOS)
15.1(3)SVU20 (Cisco IOS)
15.1(3)SVU21 (Cisco IOS)
15.1(3)SVT3 (Cisco IOS)
15.1(3)SVT4 (Cisco IOS)
15.1(3)SVR10 (Cisco IOS)
15.2(2)E10a (Cisco IOS)
15.2(4)E10c (Cisco IOS)
15.2(2)E10b (Cisco IOS)
15.2(4)E10d (Cisco IOS)
15.2(2)E10c (Cisco IOS)
15.2(7)E9 (Cisco IOS)
15.2(8)E5 (Cisco IOS)
15.2(7)E10 (Cisco IOS)
15.2(8)E6 (Cisco IOS)

Тип ПО

Операционная система

Операционные системы и аппаратные платформы

Cisco Systems Inc. Cisco IOS 15.2(4)E
Cisco Systems Inc. Cisco IOS 15.2(2)E5b
Cisco Systems Inc. Cisco IOS 15.0(1)EY
Cisco Systems Inc. Cisco IOS 15.0(1)EY1
Cisco Systems Inc. Cisco IOS 15.0(1)EY2
Cisco Systems Inc. Cisco IOS 15.0(2)SE8
Cisco Systems Inc. Cisco IOS 15.0(1)EX
Cisco Systems Inc. Cisco IOS 15.0(2)EX10
Cisco Systems Inc. Cisco IOS 15.0(2)EX11
Cisco Systems Inc. Cisco IOS 15.0(2)EX13
Cisco Systems Inc. Cisco IOS 15.0(2)EX12
Cisco Systems Inc. Cisco IOS 15.2(2)E
Cisco Systems Inc. Cisco IOS 15.2(3)E
Cisco Systems Inc. Cisco IOS 15.2(2)E1
Cisco Systems Inc. Cisco IOS 15.2(3)E1
Cisco Systems Inc. Cisco IOS 15.2(2)E2
Cisco Systems Inc. Cisco IOS 15.2(2)E3
Cisco Systems Inc. Cisco IOS 15.2(2a)E2
Cisco Systems Inc. Cisco IOS 15.2(3)E2
Cisco Systems Inc. Cisco IOS 15.2(3a)E
Cisco Systems Inc. Cisco IOS 15.2(3)E3
Cisco Systems Inc. Cisco IOS 15.2(3m)E2
Cisco Systems Inc. Cisco IOS 15.2(4)E1
Cisco Systems Inc. Cisco IOS 15.2(2)E4
Cisco Systems Inc. Cisco IOS 15.2(2)E5
Cisco Systems Inc. Cisco IOS 15.2(4)E2
Cisco Systems Inc. Cisco IOS 15.2(4m)E1
Cisco Systems Inc. Cisco IOS 15.2(3)E4
Cisco Systems Inc. Cisco IOS 15.2(5)E
Cisco Systems Inc. Cisco IOS 15.2(4)E3
Cisco Systems Inc. Cisco IOS 15.2(2)E6
Cisco Systems Inc. Cisco IOS 15.2(5)E1
Cisco Systems Inc. Cisco IOS 15.2(4m)E3
Cisco Systems Inc. Cisco IOS 15.2(3m)E8
Cisco Systems Inc. Cisco IOS 15.2(2)E5a
Cisco Systems Inc. Cisco IOS 15.2(4n)E2
Cisco Systems Inc. Cisco IOS 15.2(4o)E2
Cisco Systems Inc. Cisco IOS 15.2(4)E4
Cisco Systems Inc. Cisco IOS 15.2(2)E7
Cisco Systems Inc. Cisco IOS 15.2(5)E2
Cisco Systems Inc. Cisco IOS 15.2(4p)E1
Cisco Systems Inc. Cisco IOS 15.2(6)E
Cisco Systems Inc. Cisco IOS 15.2(4)E5
Cisco Systems Inc. Cisco IOS 15.2(4m)E2
Cisco Systems Inc. Cisco IOS 15.2(4o)E3
Cisco Systems Inc. Cisco IOS 15.2(4q)E1
Cisco Systems Inc. Cisco IOS 15.2(6)E0a
Cisco Systems Inc. Cisco IOS 15.2(6)E0c
Cisco Systems Inc. Cisco IOS 15.0(2)EX
Cisco Systems Inc. Cisco IOS 15.0(2)EX1
Cisco Systems Inc. Cisco IOS 15.0(2)EX2
Cisco Systems Inc. Cisco IOS 15.0(2)EX3
Cisco Systems Inc. Cisco IOS 15.0(2)EX4
Cisco Systems Inc. Cisco IOS 15.0(2)EX5
Cisco Systems Inc. Cisco IOS 15.0(2)EX6
Cisco Systems Inc. Cisco IOS 15.0(2)EX7
Cisco Systems Inc. Cisco IOS 15.0(2)EX8
Cisco Systems Inc. Cisco IOS 15.0(2a)EX5
Cisco Systems Inc. Cisco IOS 15.2(2b)E
Cisco Systems Inc. Cisco IOS 15.2(2a)E1
Cisco Systems Inc. Cisco IOS 15.2(3m)E7
Cisco Systems Inc. Cisco IOS 15.2(5b)E
Cisco Systems Inc. Cisco IOS 15.2(4s)E1
Cisco Systems Inc. Cisco IOS 15.2(7)E
Cisco Systems Inc. Cisco IOS 12.2(6)I1
Cisco Systems Inc. Cisco IOS 15.0(1)XO1
Cisco Systems Inc. Cisco IOS 15.0(1)XO
Cisco Systems Inc. Cisco IOS 15.0(2)XO
Cisco Systems Inc. Cisco IOS 15.2(2)E8
Cisco Systems Inc. Cisco IOS 15.2(6)E1
Cisco Systems Inc. Cisco IOS 15.2(4)E6
Cisco Systems Inc. Cisco IOS 15.2(2)E9
Cisco Systems Inc. Cisco IOS 15.2(6)E1a
Cisco Systems Inc. Cisco IOS 15.2(4)E7
Cisco Systems Inc. Cisco IOS 15.2(6)E1s
Cisco Systems Inc. Cisco IOS 15.2(2)E10
Cisco Systems Inc. Cisco IOS 15.2(2)E9a
Cisco Systems Inc. Cisco IOS 15.2(4)EA7
Cisco Systems Inc. Cisco IOS 15.2(4)EA8
Cisco Systems Inc. Cisco IOS 15.2(4)EA9
Cisco Systems Inc. Cisco IOS 15.0(2)SQD
Cisco Systems Inc. Cisco IOS 15.0(2)SQD1
Cisco Systems Inc. Cisco IOS 15.0(2)SQD2
Cisco Systems Inc. Cisco IOS 15.0(2)SQD3
Cisco Systems Inc. Cisco IOS 15.0(2)SQD4
Cisco Systems Inc. Cisco IOS 15.0(2)SQD5
Cisco Systems Inc. Cisco IOS 15.0(2)SQD6
Cisco Systems Inc. Cisco IOS 15.0(2)SQD7
Cisco Systems Inc. Cisco IOS 15.0(2)SQD8
Cisco Systems Inc. Cisco IOS 15.2(4)E8
Cisco Systems Inc. Cisco IOS 15.1(3)SVR1
Cisco Systems Inc. Cisco IOS 15.1(3)SVR2
Cisco Systems Inc. Cisco IOS 15.1(3)SVR3
Cisco Systems Inc. Cisco IOS 15.1(3)SVS
Cisco Systems Inc. Cisco IOS 15.1(3)SVS1
Cisco Systems Inc. Cisco IOS 15.1(3)SVT1
Cisco Systems Inc. Cisco IOS 15.1(3)SVT2
Cisco Systems Inc. Cisco IOS 15.1(3)SVU1
Cisco Systems Inc. Cisco IOS 15.2(4)E9
Cisco Systems Inc. Cisco IOS 15.2(4)E10
Cisco Systems Inc. Cisco IOS 15.2(4)E10A
Cisco Systems Inc. Cisco IOS 15.2(4)E10B
Cisco Systems Inc. Cisco IOS 15.2(4)EA9A
Cisco Systems Inc. Cisco IOS 15.2(6)E2
Cisco Systems Inc. Cisco IOS 15.2(6)E2a
Cisco Systems Inc. Cisco IOS 15.2(6)E2b
Cisco Systems Inc. Cisco IOS 15.2(6)E3
Cisco Systems Inc. Cisco IOS 15.2(6)Eb
Cisco Systems Inc. Cisco IOS 15.2(7)E0a
Cisco Systems Inc. Cisco IOS 15.2(7)E0b
Cisco Systems Inc. Cisco IOS 15.2(7)E0s
Cisco Systems Inc. Cisco IOS 15.2(7)E1
Cisco Systems Inc. Cisco IOS 15.2(7)E1a
Cisco Systems Inc. Cisco IOS 15.2(7)E2
Cisco Systems Inc. Cisco IOS 15.2(7)E2a
Cisco Systems Inc. Cisco IOS 15.2(7)E2b
Cisco Systems Inc. Cisco IOS 15.2(7)E3
Cisco Systems Inc. Cisco IOS 15.2(7)E3k
Cisco Systems Inc. Cisco IOS 15.2(7)E5
Cisco Systems Inc. Cisco IOS 15.2(7a)E0b
Cisco Systems Inc. Cisco IOS 15.2(7b)E0b
Cisco Systems Inc. Cisco IOS 15.2(8)E
Cisco Systems Inc. Cisco IOS 15.2(8)E1
Cisco Systems Inc. Cisco IOS 15.2(7)E4
Cisco Systems Inc. Cisco IOS 15.2(7)E6
Cisco Systems Inc. Cisco IOS 15.2(8)E2
Cisco Systems Inc. Cisco IOS 15.2(7)E7
Cisco Systems Inc. Cisco IOS 15.2(8)E3
Cisco Systems Inc. Cisco IOS 15.2(7)E8
Cisco Systems Inc. Cisco IOS 15.2(8)E4
Cisco Systems Inc. Cisco IOS 15.1(3)SVX
Cisco Systems Inc. Cisco IOS 15.1(3)SVX1
Cisco Systems Inc. Cisco IOS 15.1(3)SVW
Cisco Systems Inc. Cisco IOS 15.1(3)SVW1
Cisco Systems Inc. Cisco IOS 15.1(3)SVV1
Cisco Systems Inc. Cisco IOS 15.1(3)SVV2
Cisco Systems Inc. Cisco IOS 15.1(3)SVV3
Cisco Systems Inc. Cisco IOS 15.1(3)SVV4
Cisco Systems Inc. Cisco IOS 15.1(3)SVU10
Cisco Systems Inc. Cisco IOS 15.1(3)SVU2
Cisco Systems Inc. Cisco IOS 15.1(3)SVU11
Cisco Systems Inc. Cisco IOS 15.1(3)SVU20
Cisco Systems Inc. Cisco IOS 15.1(3)SVU21
Cisco Systems Inc. Cisco IOS 15.1(3)SVT3
Cisco Systems Inc. Cisco IOS 15.1(3)SVT4
Cisco Systems Inc. Cisco IOS 15.1(3)SVR10
Cisco Systems Inc. Cisco IOS 15.2(2)E10a
Cisco Systems Inc. Cisco IOS 15.2(4)E10c
Cisco Systems Inc. Cisco IOS 15.2(2)E10b
Cisco Systems Inc. Cisco IOS 15.2(4)E10d
Cisco Systems Inc. Cisco IOS 15.2(2)E10c
Cisco Systems Inc. Cisco IOS 15.2(7)E9
Cisco Systems Inc. Cisco IOS 15.2(8)E5
Cisco Systems Inc. Cisco IOS 15.2(7)E10
Cisco Systems Inc. Cisco IOS 15.2(8)E6

Уровень опасности уязвимости

Высокий уровень опасности (базовая оценка CVSS 2.0 составляет 7,2)
Средний уровень опасности (базовая оценка CVSS 3.1 составляет 6,8)

Возможные меры по устранению уязвимости

Использование рекомендаций:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-c2960-3560-sboot-ZtqADrHq

Статус уязвимости

Подтверждена производителем

Наличие эксплойта

Данные уточняются

Информация об устранении

Уязвимость устранена

Ссылки на источники

Идентификаторы других систем описаний уязвимостей

EPSS

Процентиль: 21%
0.00069
Низкий

6.8 Medium

CVSS3

7.2 High

CVSS2

Связанные уязвимости

nvd логотип

CVE-2025-20181

CVSS3: 6.8
nvd
9 месяцев назад

A vulnerability in Cisco IOS Software for Cisco Catalyst 2960X, 2960XR, 2960CX, and 3560CX Series Switches could allow an authenticated, local attacker with privilege level 15 or an unauthenticated attacker with physical access to the device to execute persistent code at boot time and break the chain of trust. This vulnerability is due to missing signature verification for specific files that may be loaded during the device boot process. An attacker could exploit this vulnerability by placing a crafted file into a specific location on an affected device. A successful exploit could allow the attacker to execute arbitrary code at boot time. Because this allows the attacker to bypass a major security feature of the device, Cisco has raised the Security Impact Rating (SIR) of this advisory from Medium to High.

github логотип

GHSA-95h6-vgwg-qcqc

CVSS3: 6.8
github
9 месяцев назад

A vulnerability in Cisco IOS Software for Cisco Catalyst 2960X, 2960XR, 2960CX, and 3560CX Series Switches could allow an authenticated, local attacker with privilege level 15 or an unauthenticated attacker with physical access to the device to execute persistent code at boot time and break the chain of trust. This vulnerability is due to missing signature verification for specific files that may be loaded during the device boot process. An attacker could exploit this vulnerability by placing a crafted file into a specific location on an affected device. A successful exploit could allow the attacker to execute arbitrary code at boot time. Because this allows the attacker to bypass a major security feature of the device, Cisco has raised the Security Impact Rating (SIR) of this advisory from Medium to High.

EPSS

Процентиль: 21%
0.00069
Низкий

6.8 Medium

CVSS3

7.2 High

CVSS2