BDU:2025-10333

Опубликовано: 07 мая 2025

Источник: fstec

CVSS3: 7.4

CVSS2: 6.1

EPSS Низкий

Описание

Уязвимость операционных систем Cisco IOS XE маршрутизаторов Cisco ASR 903 связана с несоответствием процедур управления памятью. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, вызвать отказ в обслуживании

Вендор

Cisco Systems Inc.

Наименование ПО

Cisco IOS XE

Версия ПО

3.16.1as (Cisco IOS XE)

3.16.2as (Cisco IOS XE)

3.17.0s (Cisco IOS XE)

3.17.1s (Cisco IOS XE)

3.18.0s (Cisco IOS XE)

16.5.1 (Cisco IOS XE)

16.1.1 (Cisco IOS XE)

16.1.2 (Cisco IOS XE)

16.1.3 (Cisco IOS XE)

16.3.1a (Cisco IOS XE)

16.5.1a (Cisco IOS XE)

16.2.1 (Cisco IOS XE)

16.2.2 (Cisco IOS XE)

16.3.1 (Cisco IOS XE)

16.3.2 (Cisco IOS XE)

16.3.3 (Cisco IOS XE)

16.3.4 (Cisco IOS XE)

16.3.5 (Cisco IOS XE)

16.3.5b (Cisco IOS XE)

16.4.1 (Cisco IOS XE)

16.6.1 (Cisco IOS XE)

16.6.4 (Cisco IOS XE)

16.4.3 (Cisco IOS XE)

16.7.2 (Cisco IOS XE)

3.16.4bS (Cisco IOS XE)

3.16.5S (Cisco IOS XE)

3.16.6S (Cisco IOS XE)

3.16.5aS (Cisco IOS XE)

3.16.7S (Cisco IOS XE)

3.16.6bS (Cisco IOS XE)

3.16.7bS (Cisco IOS XE)

3.17.2S (Cisco IOS XE)

3.17.3S (Cisco IOS XE)

3.17.4S (Cisco IOS XE)

16.3.6 (Cisco IOS XE)

16.4.2 (Cisco IOS XE)

16.5.1b (Cisco IOS XE)

16.5.2 (Cisco IOS XE)

16.5.3 (Cisco IOS XE)

3.18.6SP (Cisco IOS XE)

16.6.2 (Cisco IOS XE)

16.6.3 (Cisco IOS XE)

16.7.1 (Cisco IOS XE)

16.8.1 (Cisco IOS XE)

16.9.1b (Cisco IOS XE)

3.16.0aS (Cisco IOS XE)

3.16.3aS (Cisco IOS XE)

3.16.4S (Cisco IOS XE)

3.16.8S (Cisco IOS XE)

16.3.7 (Cisco IOS XE)

3.18.1S (Cisco IOS XE)

3.18.2S (Cisco IOS XE)

3.18.3S (Cisco IOS XE)

3.18.4S (Cisco IOS XE)

3.18.0SP (Cisco IOS XE)

3.18.1SP (Cisco IOS XE)

3.18.1gSP (Cisco IOS XE)

3.18.1bSP (Cisco IOS XE)

3.18.2SP (Cisco IOS XE)

3.18.1hSP (Cisco IOS XE)

3.18.2aSP (Cisco IOS XE)

3.18.1iSP (Cisco IOS XE)

3.18.3SP (Cisco IOS XE)

3.18.4SP (Cisco IOS XE)

3.18.5SP (Cisco IOS XE)

16.8.1b (Cisco IOS XE)

16.8.1c (Cisco IOS XE)

16.9.1 (Cisco IOS XE)

16.9.2 (Cisco IOS XE)

16.9.1a (Cisco IOS XE)

16.7.3 (Cisco IOS XE)

16.10.1 (Cisco IOS XE)

3.16.10S (Cisco IOS XE)

16.12.1 (Cisco IOS XE)

16.9.3h (Cisco IOS XE)

3.16.9S (Cisco IOS XE)

16.3.8 (Cisco IOS XE)

16.6.5 (Cisco IOS XE)

16.3.9 (Cisco IOS XE)

16.6.5a (Cisco IOS XE)

16.6.6 (Cisco IOS XE)

16.9.3 (Cisco IOS XE)

16.9.4 (Cisco IOS XE)

16.11.1 (Cisco IOS XE)

16.11.1a (Cisco IOS XE)

16.11.2 (Cisco IOS XE)

16.3.10 (Cisco IOS XE)

16.6.7 (Cisco IOS XE)

16.6.8 (Cisco IOS XE)

16.9.5 (Cisco IOS XE)

17.2.1 (Cisco IOS XE)

17.1.1 (Cisco IOS XE)

16.12.2 (Cisco IOS XE)

16.12.2a (Cisco IOS XE)

16.12.4 (Cisco IOS XE)

17.1.1a (Cisco IOS XE)

17.1.2 (Cisco IOS XE)

17.1.3 (Cisco IOS XE)

17.3.1 (Cisco IOS XE)

17.6.1 (Cisco IOS XE)

17.9.1 (Cisco IOS XE)

17.11.1 (Cisco IOS XE)

17.11.1a (Cisco IOS XE)

17.12.1 (Cisco IOS XE)

17.10.1 (Cisco IOS XE)

16.12.3 (Cisco IOS XE)

16.12.8 (Cisco IOS XE)

16.12.5 (Cisco IOS XE)

16.12.6 (Cisco IOS XE)

16.12.7 (Cisco IOS XE)

17.8.1 (Cisco IOS XE)

17.9.2 (Cisco IOS XE)

17.9.3 (Cisco IOS XE)

17.9.4 (Cisco IOS XE)

17.9.4a (Cisco IOS XE)

17.7.1 (Cisco IOS XE)

17.6.5a (Cisco IOS XE)

17.6.6a (Cisco IOS XE)

17.6.6 (Cisco IOS XE)

17.6.2 (Cisco IOS XE)

17.6.3 (Cisco IOS XE)

17.6.4 (Cisco IOS XE)

17.6.5 (Cisco IOS XE)

17.3.2 (Cisco IOS XE)

17.3.3 (Cisco IOS XE)

17.3.2a (Cisco IOS XE)

17.3.4 (Cisco IOS XE)

17.3.5 (Cisco IOS XE)

17.3.6 (Cisco IOS XE)

17.3.7 (Cisco IOS XE)

17.3.8 (Cisco IOS XE)

17.3.8a (Cisco IOS XE)

17.4.1 (Cisco IOS XE)

17.5.1 (Cisco IOS XE)

16.3.11 (Cisco IOS XE)

16.6.9 (Cisco IOS XE)

16.6.10 (Cisco IOS XE)

16.9.6 (Cisco IOS XE)

16.9.7 (Cisco IOS XE)

17.4.1c (Cisco IOS XE)

17.4.2 (Cisco IOS XE)

17.5.1b (Cisco IOS XE)

17.5.1c (Cisco IOS XE)

17.9.2a (Cisco IOS XE)

17.12.2 (Cisco IOS XE)

17.12.2a (Cisco IOS XE)

3.18.9SP (Cisco IOS XE)

3.18.8aSP (Cisco IOS XE)

3.18.7SP (Cisco IOS XE)

17.6.1y (Cisco IOS XE)

16.9.8 (Cisco IOS XE)

17.9.5a (Cisco IOS XE)

17.13.1 (Cisco IOS XE)

17.14.1 (Cisco IOS XE)

17.6.7 (Cisco IOS XE)

17.9.5 (Cisco IOS XE)

17.12.3 (Cisco IOS XE)

17.12.4 (Cisco IOS XE)

17.6.8 (Cisco IOS XE)

17.9.6 (Cisco IOS XE)

Тип ПО

Операционная система

Операционные системы и аппаратные платформы

Cisco Systems Inc. Cisco IOS XE 3.16.1as

Cisco Systems Inc. Cisco IOS XE 3.16.2as

Cisco Systems Inc. Cisco IOS XE 3.17.0s

Cisco Systems Inc. Cisco IOS XE 3.17.1s

Cisco Systems Inc. Cisco IOS XE 3.18.0s

Cisco Systems Inc. Cisco IOS XE 16.5.1

Cisco Systems Inc. Cisco IOS XE 16.1.1

Cisco Systems Inc. Cisco IOS XE 16.1.2

Cisco Systems Inc. Cisco IOS XE 16.1.3

Cisco Systems Inc. Cisco IOS XE 16.3.1a

Cisco Systems Inc. Cisco IOS XE 16.5.1a

Cisco Systems Inc. Cisco IOS XE 16.2.1

Cisco Systems Inc. Cisco IOS XE 16.2.2

Cisco Systems Inc. Cisco IOS XE 16.3.1

Cisco Systems Inc. Cisco IOS XE 16.3.2

Cisco Systems Inc. Cisco IOS XE 16.3.3

Cisco Systems Inc. Cisco IOS XE 16.3.4

Cisco Systems Inc. Cisco IOS XE 16.3.5

Cisco Systems Inc. Cisco IOS XE 16.3.5b

Cisco Systems Inc. Cisco IOS XE 16.4.1

Cisco Systems Inc. Cisco IOS XE 16.6.1

Cisco Systems Inc. Cisco IOS XE 16.6.4

Cisco Systems Inc. Cisco IOS XE 16.4.3

Cisco Systems Inc. Cisco IOS XE 16.7.2

Cisco Systems Inc. Cisco IOS XE 3.16.4bS

Cisco Systems Inc. Cisco IOS XE 3.16.5S

Cisco Systems Inc. Cisco IOS XE 3.16.6S

Cisco Systems Inc. Cisco IOS XE 3.16.5aS

Cisco Systems Inc. Cisco IOS XE 3.16.7S

Cisco Systems Inc. Cisco IOS XE 3.16.6bS

Cisco Systems Inc. Cisco IOS XE 3.16.7bS

Cisco Systems Inc. Cisco IOS XE 3.17.2S

Cisco Systems Inc. Cisco IOS XE 3.17.3S

Cisco Systems Inc. Cisco IOS XE 3.17.4S

Cisco Systems Inc. Cisco IOS XE 16.3.6

Cisco Systems Inc. Cisco IOS XE 16.4.2

Cisco Systems Inc. Cisco IOS XE 16.5.1b

Cisco Systems Inc. Cisco IOS XE 16.5.2

Cisco Systems Inc. Cisco IOS XE 16.5.3

Cisco Systems Inc. Cisco IOS XE 3.18.6SP

Cisco Systems Inc. Cisco IOS XE 16.6.2

Cisco Systems Inc. Cisco IOS XE 16.6.3

Cisco Systems Inc. Cisco IOS XE 16.7.1

Cisco Systems Inc. Cisco IOS XE 16.8.1

Cisco Systems Inc. Cisco IOS XE 16.9.1b

Cisco Systems Inc. Cisco IOS XE 3.16.0aS

Cisco Systems Inc. Cisco IOS XE 3.16.3aS

Cisco Systems Inc. Cisco IOS XE 3.16.4S

Cisco Systems Inc. Cisco IOS XE 3.16.8S

Cisco Systems Inc. Cisco IOS XE 16.3.7

Cisco Systems Inc. Cisco IOS XE 3.18.1S

Cisco Systems Inc. Cisco IOS XE 3.18.2S

Cisco Systems Inc. Cisco IOS XE 3.18.3S

Cisco Systems Inc. Cisco IOS XE 3.18.4S

Cisco Systems Inc. Cisco IOS XE 3.18.0SP

Cisco Systems Inc. Cisco IOS XE 3.18.1SP

Cisco Systems Inc. Cisco IOS XE 3.18.1gSP

Cisco Systems Inc. Cisco IOS XE 3.18.1bSP

Cisco Systems Inc. Cisco IOS XE 3.18.2SP

Cisco Systems Inc. Cisco IOS XE 3.18.1hSP

Cisco Systems Inc. Cisco IOS XE 3.18.2aSP

Cisco Systems Inc. Cisco IOS XE 3.18.1iSP

Cisco Systems Inc. Cisco IOS XE 3.18.3SP

Cisco Systems Inc. Cisco IOS XE 3.18.4SP

Cisco Systems Inc. Cisco IOS XE 3.18.5SP

Cisco Systems Inc. Cisco IOS XE 16.8.1b

Cisco Systems Inc. Cisco IOS XE 16.8.1c

Cisco Systems Inc. Cisco IOS XE 16.9.1

Cisco Systems Inc. Cisco IOS XE 16.9.2

Cisco Systems Inc. Cisco IOS XE 16.9.1a

Cisco Systems Inc. Cisco IOS XE 16.7.3

Cisco Systems Inc. Cisco IOS XE 16.10.1

Cisco Systems Inc. Cisco IOS XE 3.16.10S

Cisco Systems Inc. Cisco IOS XE 16.12.1

Cisco Systems Inc. Cisco IOS XE 16.9.3h

Cisco Systems Inc. Cisco IOS XE 3.16.9S

Cisco Systems Inc. Cisco IOS XE 16.3.8

Cisco Systems Inc. Cisco IOS XE 16.6.5

Cisco Systems Inc. Cisco IOS XE 16.3.9

Cisco Systems Inc. Cisco IOS XE 16.6.5a

Cisco Systems Inc. Cisco IOS XE 16.6.6

Cisco Systems Inc. Cisco IOS XE 16.9.3

Cisco Systems Inc. Cisco IOS XE 16.9.4

Cisco Systems Inc. Cisco IOS XE 16.11.1

Cisco Systems Inc. Cisco IOS XE 16.11.1a

Cisco Systems Inc. Cisco IOS XE 16.11.2

Cisco Systems Inc. Cisco IOS XE 16.3.10

Cisco Systems Inc. Cisco IOS XE 16.6.7

Cisco Systems Inc. Cisco IOS XE 16.6.8

Cisco Systems Inc. Cisco IOS XE 16.9.5

Cisco Systems Inc. Cisco IOS XE 17.2.1

Cisco Systems Inc. Cisco IOS XE 17.1.1

Cisco Systems Inc. Cisco IOS XE 16.12.2

Cisco Systems Inc. Cisco IOS XE 16.12.2a

Cisco Systems Inc. Cisco IOS XE 16.12.4

Cisco Systems Inc. Cisco IOS XE 17.1.1a

Cisco Systems Inc. Cisco IOS XE 17.1.2

Cisco Systems Inc. Cisco IOS XE 17.1.3

Cisco Systems Inc. Cisco IOS XE 17.3.1

Cisco Systems Inc. Cisco IOS XE 17.6.1

Cisco Systems Inc. Cisco IOS XE 17.9.1

Cisco Systems Inc. Cisco IOS XE 17.11.1

Cisco Systems Inc. Cisco IOS XE 17.11.1a

Cisco Systems Inc. Cisco IOS XE 17.12.1

Cisco Systems Inc. Cisco IOS XE 17.10.1

Cisco Systems Inc. Cisco IOS XE 16.12.3

Cisco Systems Inc. Cisco IOS XE 16.12.8

Cisco Systems Inc. Cisco IOS XE 16.12.5

Cisco Systems Inc. Cisco IOS XE 16.12.6

Cisco Systems Inc. Cisco IOS XE 16.12.7

Cisco Systems Inc. Cisco IOS XE 17.8.1

Cisco Systems Inc. Cisco IOS XE 17.9.2

Cisco Systems Inc. Cisco IOS XE 17.9.3

Cisco Systems Inc. Cisco IOS XE 17.9.4

Cisco Systems Inc. Cisco IOS XE 17.9.4a

Cisco Systems Inc. Cisco IOS XE 17.7.1

Cisco Systems Inc. Cisco IOS XE 17.6.5a

Cisco Systems Inc. Cisco IOS XE 17.6.6a

Cisco Systems Inc. Cisco IOS XE 17.6.6

Cisco Systems Inc. Cisco IOS XE 17.6.2

Cisco Systems Inc. Cisco IOS XE 17.6.3

Cisco Systems Inc. Cisco IOS XE 17.6.4

Cisco Systems Inc. Cisco IOS XE 17.6.5

Cisco Systems Inc. Cisco IOS XE 17.3.2

Cisco Systems Inc. Cisco IOS XE 17.3.3

Cisco Systems Inc. Cisco IOS XE 17.3.2a

Cisco Systems Inc. Cisco IOS XE 17.3.4

Cisco Systems Inc. Cisco IOS XE 17.3.5

Cisco Systems Inc. Cisco IOS XE 17.3.6

Cisco Systems Inc. Cisco IOS XE 17.3.7

Cisco Systems Inc. Cisco IOS XE 17.3.8

Cisco Systems Inc. Cisco IOS XE 17.3.8a

Cisco Systems Inc. Cisco IOS XE 17.4.1

Cisco Systems Inc. Cisco IOS XE 17.5.1

Cisco Systems Inc. Cisco IOS XE 16.3.11

Cisco Systems Inc. Cisco IOS XE 16.6.9

Cisco Systems Inc. Cisco IOS XE 16.6.10

Cisco Systems Inc. Cisco IOS XE 16.9.6

Cisco Systems Inc. Cisco IOS XE 16.9.7

Cisco Systems Inc. Cisco IOS XE 17.4.1c

Cisco Systems Inc. Cisco IOS XE 17.4.2

Cisco Systems Inc. Cisco IOS XE 17.5.1b

Cisco Systems Inc. Cisco IOS XE 17.5.1c

Cisco Systems Inc. Cisco IOS XE 17.9.2a

Cisco Systems Inc. Cisco IOS XE 17.12.2

Cisco Systems Inc. Cisco IOS XE 17.12.2a

Cisco Systems Inc. Cisco IOS XE 3.18.9SP

Cisco Systems Inc. Cisco IOS XE 3.18.8aSP

Cisco Systems Inc. Cisco IOS XE 3.18.7SP

Cisco Systems Inc. Cisco IOS XE 17.6.1y

Cisco Systems Inc. Cisco IOS XE 16.9.8

Cisco Systems Inc. Cisco IOS XE 17.9.5a

Cisco Systems Inc. Cisco IOS XE 17.13.1

Cisco Systems Inc. Cisco IOS XE 17.14.1

Cisco Systems Inc. Cisco IOS XE 17.6.7

Cisco Systems Inc. Cisco IOS XE 17.9.5

Cisco Systems Inc. Cisco IOS XE 17.12.3

Cisco Systems Inc. Cisco IOS XE 17.12.4

Cisco Systems Inc. Cisco IOS XE 17.6.8

Cisco Systems Inc. Cisco IOS XE 17.9.6

Уровень опасности уязвимости

Средний уровень опасности (базовая оценка CVSS 2.0 составляет 6,1)

Высокий уровень опасности (базовая оценка CVSS 3.1 составляет 7,4)

Возможные меры по устранению уязвимости

Использование рекомендаций:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asr903-rsp3-arp-dos-WmfzdvJZ

Статус уязвимости

Подтверждена производителем

Наличие эксплойта

Данные уточняются

Информация об устранении

Уязвимость устранена

Ссылки на источники

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asr903-rsp3-arp-dos-WmfzdvJZ

Идентификаторы других систем описаний уязвимостей

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2025-20189
CVE

EPSS

Процентиль: 9%

0.00032

Низкий

7.4 High

CVSS3

6.1 Medium

CVSS2

Связанные уязвимости

CVE-2025-20189

CVSS3: 7.4

nvd

9 месяцев назад

A vulnerability in the Cisco Express Forwarding functionality of Cisco IOS XE Software for Cisco ASR 903 Aggregation Services Routers with Route Switch Processor 3 (RSP3C) could allow an unauthenticated, adjacent attacker to trigger a denial of service (DoS) condition. This vulnerability is due to improper memory management when Cisco IOS XE Software is processing Address Resolution Protocol (ARP) messages. An attacker could exploit this vulnerability by sending crafted ARP messages at a high rate over a period of time to an affected device. A successful exploit could allow the attacker to exhaust system resources, which eventually triggers a reload of the active route switch processor (RSP). If a redundant RSP is not present, the router reloads.

GHSA-v76p-4wxx-wrpq

CVSS3: 7.4

github

9 месяцев назад

EPSS

Процентиль: 9%

0.00032

Низкий

7.4 High

CVSS3

6.1 Medium

CVSS2