CVE-2025-20196 - Vulnerability Details

A vulnerability in the Cisco IOx application hosting environment of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the Cisco IOx application hosting environment to stop responding, resulting in a denial of service (DoS) condition.

This vulnerability is due to the improper handling of HTTP requests. An attacker could exploit this vulnerability by sending crafted HTTP requests to an affected device. A successful exploit could allow the attacker to cause the Cisco IOx application hosting environment to stop responding. The IOx process will need to be manually restarted to recover services.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00099.

Exploitation none

Automatable yes

Technical Impact total

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Cisco

IOS

affected

Version	Status	Constraints
`N/A`	affected	—

Cisco

Cisco IOS XE Software

affected

Version	Status	Constraints
`16.1.1`	affected	—
`16.1.2`	affected	—
`16.1.3`	affected	—
`16.2.1`	affected	—
`16.2.2`	affected	—
`16.3.1`	affected	—
`16.3.2`	affected	—
`16.3.3`	affected	—
`16.3.1a`	affected	—
`16.3.4`	affected	—
`16.3.5`	affected	—
`16.3.5b`	affected	—
`16.3.6`	affected	—
`16.3.7`	affected	—
`16.3.8`	affected	—
`16.3.9`	affected	—
`16.3.10`	affected	—
`16.3.11`	affected	—
`16.4.1`	affected	—
`16.4.2`	affected	—
`16.4.3`	affected	—
`16.5.1`	affected	—
`16.5.1a`	affected	—
`16.5.1b`	affected	—
`16.5.2`	affected	—
`16.5.3`	affected	—
`17.1.1`	affected	—
`17.1.1a`	affected	—
`17.1.1s`	affected	—
`17.1.1t`	affected	—
`17.1.3`	affected	—
`17.2.1`	affected	—
`17.2.1r`	affected	—
`17.2.1a`	affected	—
`17.2.1v`	affected	—
`17.2.2`	affected	—
`17.2.3`	affected	—
`17.3.1`	affected	—
`17.3.2`	affected	—
`17.3.3`	affected	—
`17.3.1a`	affected	—
`17.3.1w`	affected	—
`17.3.2a`	affected	—
`17.3.1x`	affected	—
`17.3.1z`	affected	—
`17.3.4`	affected	—
`17.3.5`	affected	—
`17.3.4a`	affected	—
`17.3.6`	affected	—
`17.3.4b`	affected	—
`17.3.4c`	affected	—
`17.3.5a`	affected	—
`17.3.5b`	affected	—
`17.3.7`	affected	—
`17.3.8`	affected	—
`17.3.8a`	affected	—
`17.4.1`	affected	—
`17.4.2`	affected	—
`17.4.1a`	affected	—
`17.4.1b`	affected	—
`17.4.2a`	affected	—
`17.5.1`	affected	—
`17.5.1a`	affected	—
`17.6.1`	affected	—
`17.6.2`	affected	—
`17.6.1w`	affected	—
`17.6.1a`	affected	—
`17.6.1x`	affected	—
`17.6.3`	affected	—
`17.6.1y`	affected	—
`17.6.1z`	affected	—
`17.6.3a`	affected	—
`17.6.4`	affected	—
`17.6.1z1`	affected	—
`17.6.5`	affected	—
`17.6.6`	affected	—
`17.6.6a`	affected	—
`17.6.5a`	affected	—
`17.6.7`	affected	—
`17.6.8`	affected	—
`17.6.8a`	affected	—
`17.7.1`	affected	—
`17.7.1a`	affected	—
`17.7.1b`	affected	—
`17.7.2`	affected	—
`17.10.1`	affected	—
`17.10.1a`	affected	—
`17.10.1b`	affected	—
`17.8.1`	affected	—
`17.8.1a`	affected	—
`17.9.1`	affected	—
`17.9.1w`	affected	—
`17.9.2`	affected	—
`17.9.1a`	affected	—
`17.9.1x`	affected	—
`17.9.1y`	affected	—
`17.9.3`	affected	—
`17.9.2a`	affected	—
`17.9.1x1`	affected	—
`17.9.3a`	affected	—
`17.9.4`	affected	—
`17.9.1y1`	affected	—
`17.9.5`	affected	—
`17.9.4a`	affected	—
`17.9.5a`	affected	—
`17.9.5b`	affected	—
`17.9.6`	affected	—
`17.9.6a`	affected	—
`17.9.5e`	affected	—
`17.9.5f`	affected	—
`17.11.1`	affected	—
`17.11.1a`	affected	—
`17.12.1`	affected	—
`17.12.1w`	affected	—
`17.12.1a`	affected	—
`17.12.1x`	affected	—
`17.12.2`	affected	—
`17.12.3`	affected	—
`17.12.2a`	affected	—
`17.12.1y`	affected	—
`17.12.1z`	affected	—
`17.12.4`	affected	—
`17.12.3a`	affected	—
`17.12.1z1`	affected	—
`17.12.1z2`	affected	—
`17.12.4a`	affected	—
`17.12.4b`	affected	—
`17.12.1z4`	affected	—
`17.13.1`	affected	—
`17.13.1a`	affected	—
`17.14.1`	affected	—
`17.14.1a`	affected	—
`17.11.99SW`	affected	—
`17.15.2`	affected	—
`17.15.2c`	affected	—
`17.15.2a`	affected	—
`17.15.2b`	affected	—

Configuration 1 [-]

OR	cpe:2.3:o:cisco:ios_xe:16.1.1:::::::*
	cpe:2.3:o:cisco:ios_xe:16.1.2:::::::*
	cpe:2.3:o:cisco:ios_xe:16.1.3:::::::*
	cpe:2.3:o:cisco:ios_xe:16.2.1:::::::*
	cpe:2.3:o:cisco:ios_xe:16.2.2:::::::*
	cpe:2.3:o:cisco:ios_xe:16.3.1:::::::*
	cpe:2.3:o:cisco:ios_xe:16.3.1a:::::::*
	cpe:2.3:o:cisco:ios_xe:16.3.2:::::::*
	cpe:2.3:o:cisco:ios_xe:16.3.3:::::::*
	cpe:2.3:o:cisco:ios_xe:16.3.4:::::::*
	cpe:2.3:o:cisco:ios_xe:16.3.5:::::::*
	cpe:2.3:o:cisco:ios_xe:16.3.5b:::::::*
	cpe:2.3:o:cisco:ios_xe:16.3.6:::::::*
	cpe:2.3:o:cisco:ios_xe:16.3.7:::::::*
	cpe:2.3:o:cisco:ios_xe:16.3.8:::::::*
	cpe:2.3:o:cisco:ios_xe:16.3.9:::::::*
	cpe:2.3:o:cisco:ios_xe:16.3.10:::::::*
	cpe:2.3:o:cisco:ios_xe:16.3.11:::::::*
	cpe:2.3:o:cisco:ios_xe:16.4.1:::::::*
	cpe:2.3:o:cisco:ios_xe:16.4.2:::::::*
	cpe:2.3:o:cisco:ios_xe:16.4.3:::::::*
	cpe:2.3:o:cisco:ios_xe:16.5.1:::::::*
	cpe:2.3:o:cisco:ios_xe:16.5.1a:::::::*
	cpe:2.3:o:cisco:ios_xe:16.5.1b:::::::*
	cpe:2.3:o:cisco:ios_xe:16.5.2:::::::*
	cpe:2.3:o:cisco:ios_xe:16.5.3:::::::*
	cpe:2.3:o:cisco:ios_xe:17.1.1:::::::*
	cpe:2.3:o:cisco:ios_xe:17.1.1a:::::::*
	cpe:2.3:o:cisco:ios_xe:17.1.1s:::::::*
	cpe:2.3:o:cisco:ios_xe:17.1.1t:::::::*
	cpe:2.3:o:cisco:ios_xe:17.1.3:::::::*
	cpe:2.3:o:cisco:ios_xe:17.2.1:::::::*
	cpe:2.3:o:cisco:ios_xe:17.2.1a:::::::*
	cpe:2.3:o:cisco:ios_xe:17.2.1r:::::::*
	cpe:2.3:o:cisco:ios_xe:17.2.1v:::::::*
	cpe:2.3:o:cisco:ios_xe:17.2.2:::::::*
	cpe:2.3:o:cisco:ios_xe:17.2.3:::::::*
	cpe:2.3:o:cisco:ios_xe:17.3.1:::::::*
	cpe:2.3:o:cisco:ios_xe:17.3.1a:::::::*
	cpe:2.3:o:cisco:ios_xe:17.3.1w:::::::*
	cpe:2.3:o:cisco:ios_xe:17.3.1x:::::::*
	cpe:2.3:o:cisco:ios_xe:17.3.1z:::::::*
	cpe:2.3:o:cisco:ios_xe:17.3.2:::::::*
	cpe:2.3:o:cisco:ios_xe:17.3.2a:::::::*
	cpe:2.3:o:cisco:ios_xe:17.3.3:::::::*
	cpe:2.3:o:cisco:ios_xe:17.3.4:::::::*
	cpe:2.3:o:cisco:ios_xe:17.3.4a:::::::*
	cpe:2.3:o:cisco:ios_xe:17.3.4b:::::::*
	cpe:2.3:o:cisco:ios_xe:17.3.4c:::::::*
	cpe:2.3:o:cisco:ios_xe:17.3.5:::::::*
	cpe:2.3:o:cisco:ios_xe:17.3.5a:::::::*
	cpe:2.3:o:cisco:ios_xe:17.3.5b:::::::*
	cpe:2.3:o:cisco:ios_xe:17.3.6:::::::*
	cpe:2.3:o:cisco:ios_xe:17.3.7:::::::*
	cpe:2.3:o:cisco:ios_xe:17.3.8:::::::*
	cpe:2.3:o:cisco:ios_xe:17.3.8a:::::::*
	cpe:2.3:o:cisco:ios_xe:17.4.1:::::::*
	cpe:2.3:o:cisco:ios_xe:17.4.1a:::::::*
	cpe:2.3:o:cisco:ios_xe:17.4.1b:::::::*
	cpe:2.3:o:cisco:ios_xe:17.4.2:::::::*
	cpe:2.3:o:cisco:ios_xe:17.4.2a:::::::*
	cpe:2.3:o:cisco:ios_xe:17.5.1:::::::*
	cpe:2.3:o:cisco:ios_xe:17.5.1a:::::::*
	cpe:2.3:o:cisco:ios_xe:17.6.1:::::::*
cpe:2.3:o:cisco:ios_xe:17.6.1a:::::::*
cpe:2.3:o:cisco:ios_xe:17.6.1w:::::::*
cpe:2.3:o:cisco:ios_xe:17.6.1x:::::::*
cpe:2.3:o:cisco:ios_xe:17.6.1y:::::::*
cpe:2.3:o:cisco:ios_xe:17.6.1z:::::::*
cpe:2.3:o:cisco:ios_xe:17.6.1z1:::::::*
cpe:2.3:o:cisco:ios_xe:17.6.2:::::::*
cpe:2.3:o:cisco:ios_xe:17.6.3:::::::*
cpe:2.3:o:cisco:ios_xe:17.6.3a:::::::*
cpe:2.3:o:cisco:ios_xe:17.6.4:::::::*
cpe:2.3:o:cisco:ios_xe:17.6.5:::::::*
cpe:2.3:o:cisco:ios_xe:17.6.5a:::::::*
cpe:2.3:o:cisco:ios_xe:17.6.6:::::::*
cpe:2.3:o:cisco:ios_xe:17.6.6a:::::::*
cpe:2.3:o:cisco:ios_xe:17.6.7:::::::*
cpe:2.3:o:cisco:ios_xe:17.6.8:::::::*
cpe:2.3:o:cisco:ios_xe:17.6.8a:::::::*
cpe:2.3:o:cisco:ios_xe:17.7.1:::::::*
cpe:2.3:o:cisco:ios_xe:17.7.1a:::::::*
cpe:2.3:o:cisco:ios_xe:17.7.1b:::::::*
cpe:2.3:o:cisco:ios_xe:17.7.2:::::::*
cpe:2.3:o:cisco:ios_xe:17.8.1:::::::*
cpe:2.3:o:cisco:ios_xe:17.8.1a:::::::*
cpe:2.3:o:cisco:ios_xe:17.9.1:::::::*
cpe:2.3:o:cisco:ios_xe:17.9.1a:::::::*
cpe:2.3:o:cisco:ios_xe:17.9.1w:::::::*
cpe:2.3:o:cisco:ios_xe:17.9.1x:::::::*
cpe:2.3:o:cisco:ios_xe:17.9.1x1:::::::*
cpe:2.3:o:cisco:ios_xe:17.9.1y:::::::*
cpe:2.3:o:cisco:ios_xe:17.9.1y1:::::::*
cpe:2.3:o:cisco:ios_xe:17.9.2:::::::*
cpe:2.3:o:cisco:ios_xe:17.9.2a:::::::*
cpe:2.3:o:cisco:ios_xe:17.9.3:::::::*
cpe:2.3:o:cisco:ios_xe:17.9.3a:::::::*
cpe:2.3:o:cisco:ios_xe:17.9.4:::::::*
cpe:2.3:o:cisco:ios_xe:17.9.4a:::::::*
cpe:2.3:o:cisco:ios_xe:17.9.5:::::::*
cpe:2.3:o:cisco:ios_xe:17.9.5a:::::::*
cpe:2.3:o:cisco:ios_xe:17.9.5b:::::::*
cpe:2.3:o:cisco:ios_xe:17.9.5e:::::::*
cpe:2.3:o:cisco:ios_xe:17.9.5f:::::::*
cpe:2.3:o:cisco:ios_xe:17.9.6:::::::*
cpe:2.3:o:cisco:ios_xe:17.9.6a:::::::*
cpe:2.3:o:cisco:ios_xe:17.10.1:::::::*
cpe:2.3:o:cisco:ios_xe:17.10.1a:::::::*
cpe:2.3:o:cisco:ios_xe:17.10.1b:::::::*
cpe:2.3:o:cisco:ios_xe:17.11.1:::::::*
cpe:2.3:o:cisco:ios_xe:17.11.1a:::::::*
cpe:2.3:o:cisco:ios_xe:17.11.99sw:::::::*
cpe:2.3:o:cisco:ios_xe:17.12.1:::::::*
cpe:2.3:o:cisco:ios_xe:17.12.1a:::::::*
cpe:2.3:o:cisco:ios_xe:17.12.1w:::::::*
cpe:2.3:o:cisco:ios_xe:17.12.1x:::::::*
cpe:2.3:o:cisco:ios_xe:17.12.1y:::::::*
cpe:2.3:o:cisco:ios_xe:17.12.1z:::::::*
cpe:2.3:o:cisco:ios_xe:17.12.1z1:::::::*
cpe:2.3:o:cisco:ios_xe:17.12.1z2:::::::*
cpe:2.3:o:cisco:ios_xe:17.12.1z4:::::::*
cpe:2.3:o:cisco:ios_xe:17.12.2:::::::*
cpe:2.3:o:cisco:ios_xe:17.12.2a:::::::*
cpe:2.3:o:cisco:ios_xe:17.12.3:::::::*
cpe:2.3:o:cisco:ios_xe:17.12.3a:::::::*
cpe:2.3:o:cisco:ios_xe:17.12.4:::::::*
cpe:2.3:o:cisco:ios_xe:17.12.4a:::::::*
cpe:2.3:o:cisco:ios_xe:17.12.4b:::::::*
cpe:2.3:o:cisco:ios_xe:17.13.1:::::::*
cpe:2.3:o:cisco:ios_xe:17.13.1a:::::::*
cpe:2.3:o:cisco:ios_xe:17.14.1:::::::*
cpe:2.3:o:cisco:ios_xe:17.14.1a:::::::*
cpe:2.3:o:cisco:ios_xe:17.15.2:::::::*
cpe:2.3:o:cisco:ios_xe:17.15.2a:::::::*
cpe:2.3:o:cisco:ios_xe:17.15.2b:::::::*
cpe:2.3:o:cisco:ios_xe:17.15.2c:::::::*

Configuration 2 [-]

AND

cpe:2.3:o:cisco:cgr1000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:cgr1000:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:cisco:ir510_wpan_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:ir510_wpan:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:cisco:ic3000_industrial_compute_gateway_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:ic3000_industrial_compute_gateway:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:cisco:807_industrial_integrated_services_router_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:807_industrial_integrated_services_router:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:cisco:809_industrial_integrated_services_router_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:809_industrial_integrated_services_router:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:cisco:829_industrial_integrated_services_router_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:829_industrial_integrated_services_router:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:cisco:catalyst_9100:-:::::::*
	cpe:2.3:h:cisco:catalyst_9105:-:::::::*
	cpe:2.3:h:cisco:catalyst_9105ax:-:::::::*
	cpe:2.3:h:cisco:catalyst_9105axi:-:::::::*
	cpe:2.3:h:cisco:catalyst_9105axw:-:::::::*
	cpe:2.3:h:cisco:catalyst_9105i:-:::::::*
	cpe:2.3:h:cisco:catalyst_9105w:-:::::::*
	cpe:2.3:h:cisco:catalyst_9115:-:::::::*
	cpe:2.3:h:cisco:catalyst_9115_ap:-:::::::*
	cpe:2.3:h:cisco:catalyst_9115ax:-:::::::*
	cpe:2.3:h:cisco:catalyst_9115axe:-:::::::*
	cpe:2.3:h:cisco:catalyst_9115axi:-:::::::*
	cpe:2.3:h:cisco:catalyst_9117:-:::::::*
	cpe:2.3:h:cisco:catalyst_9117_ap:-:::::::*
	cpe:2.3:h:cisco:catalyst_9117ax:-:::::::*
	cpe:2.3:h:cisco:catalyst_9117axi:-:::::::*
	cpe:2.3:h:cisco:catalyst_9120:-:::::::*
	cpe:2.3:h:cisco:catalyst_9120_ap:-:::::::*
	cpe:2.3:h:cisco:catalyst_9120ax:-:::::::*
	cpe:2.3:h:cisco:catalyst_9120axe:-:::::::*
	cpe:2.3:h:cisco:catalyst_9120axi:-:::::::*
	cpe:2.3:h:cisco:catalyst_9120axp:-:::::::*
	cpe:2.3:h:cisco:catalyst_9124:-:::::::*
	cpe:2.3:h:cisco:catalyst_9124ax:-:::::::*
	cpe:2.3:h:cisco:catalyst_9124axd:-:::::::*
	cpe:2.3:h:cisco:catalyst_9124axi:-:::::::*
	cpe:2.3:h:cisco:catalyst_9124d:-:::::::*
	cpe:2.3:h:cisco:catalyst_9124e:-:::::::*
	cpe:2.3:h:cisco:catalyst_9124i:-:::::::*
	cpe:2.3:h:cisco:catalyst_9130:-:::::::*
	cpe:2.3:h:cisco:catalyst_9130_ap:-:::::::*
	cpe:2.3:h:cisco:catalyst_9130ax:-:::::::*
	cpe:2.3:h:cisco:catalyst_9130axe:-:::::::*
	cpe:2.3:h:cisco:catalyst_9130axi:-:::::::*
	cpe:2.3:h:cisco:catalyst_9136:-:::::::*
	cpe:2.3:h:cisco:catalyst_9162:-:::::::*
	cpe:2.3:h:cisco:catalyst_9164:-:::::::*
	cpe:2.3:h:cisco:catalyst_9166:-:::::::*
	cpe:2.3:h:cisco:catalyst_9166d1:-:::::::*

No data.

Project Subscriptions

Vendors	Products
Cisco Subscribe	807 Industrial Integrated Services Router Subscribe 807 Industrial Integrated Services Router Firmware Subscribe 809 Industrial Integrated Services Router Subscribe 809 Industrial Integrated Services Router Firmware Subscribe 829 Industrial Integrated Services Router Subscribe 829 Industrial Integrated Services Router Firmware Subscribe Catalyst 9100 Subscribe Catalyst 9105 Subscribe Catalyst 9105ax Subscribe Catalyst 9105axi Subscribe Catalyst 9105axw Subscribe Catalyst 9105i Subscribe Catalyst 9105w Subscribe Catalyst 9115 Subscribe Catalyst 9115 Ap Subscribe Catalyst 9115ax Subscribe Catalyst 9115axe Subscribe Catalyst 9115axi Subscribe Catalyst 9117 Subscribe Catalyst 9117 Ap Subscribe Catalyst 9117ax Subscribe Catalyst 9117axi Subscribe Catalyst 9120 Subscribe Catalyst 9120 Ap Subscribe Catalyst 9120ax Subscribe Catalyst 9120axe Subscribe Catalyst 9120axi Subscribe Catalyst 9120axp Subscribe Catalyst 9124 Subscribe Catalyst 9124ax Subscribe Catalyst 9124axd Subscribe Catalyst 9124axi Subscribe Catalyst 9124d Subscribe Catalyst 9124e Subscribe Catalyst 9124i Subscribe Catalyst 9130 Subscribe Catalyst 9130 Ap Subscribe Catalyst 9130ax Subscribe Catalyst 9130axe Subscribe Catalyst 9130axi Subscribe Catalyst 9136 Subscribe Catalyst 9162 Subscribe Catalyst 9164 Subscribe Catalyst 9166 Subscribe Catalyst 9166d1 Subscribe Cgr1000 Subscribe Cgr1000 Firmware Subscribe Ic3000 Industrial Compute Gateway Subscribe Ic3000 Industrial Compute Gateway Firmware Subscribe Ios Xe Subscribe Ir510 Wpan Subscribe Ir510 Wpan Firmware Subscribe

Advisories

Source	ID	Title
EUVD	EUVD-2025-13896	A vulnerability in the Cisco IOx application hosting environment of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the Cisco IOx application hosting environment to stop responding, resulting in a denial of service (DoS) condition. This vulnerability is due to the improper handling of HTTP requests. An attacker could exploit this vulnerability by sending crafted HTTP requests to an affected device. A successful exploit could allow the attacker to cause the Cisco IOx application hosting environment to stop responding. The IOx process will need to be manually restarted to recover services.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iox-dos-95Fqnf7b

History

Mon, 14 Jul 2025 13:45:00 +0000

Type	Values Removed	Values Added
Metrics	epss `{'score': 0.00059}`	epss `{'score': 0.00062}`

Sat, 12 Jul 2025 13:45:00 +0000

Type	Values Removed	Values Added
Metrics	epss `{'score': 0.00097}`	epss `{'score': 0.00059}`

Fri, 11 Jul 2025 15:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Cisco Cisco 807 Industrial Integrated Services Router Cisco 807 Industrial Integrated Services Router Firmware Cisco 809 Industrial Integrated Services Router Cisco 809 Industrial Integrated Services Router Firmware Cisco 829 Industrial Integrated Services Router Cisco 829 Industrial Integrated Services Router Firmware Cisco catalyst 9100 Cisco catalyst 9105 Cisco catalyst 9105ax Cisco catalyst 9105axi Cisco catalyst 9105axw Cisco catalyst 9105i Cisco catalyst 9105w Cisco catalyst 9115 Cisco catalyst 9115 Ap Cisco catalyst 9115ax Cisco catalyst 9115axe Cisco catalyst 9115axi Cisco catalyst 9117 Cisco catalyst 9117 Ap Cisco catalyst 9117ax Cisco catalyst 9117axi Cisco catalyst 9120 Cisco catalyst 9120 Ap Cisco catalyst 9120ax Cisco catalyst 9120axe Cisco catalyst 9120axi Cisco catalyst 9120axp Cisco catalyst 9124 Cisco catalyst 9124ax Cisco catalyst 9124axd Cisco catalyst 9124axi Cisco catalyst 9124d Cisco catalyst 9124e Cisco catalyst 9124i Cisco catalyst 9130 Cisco catalyst 9130 Ap Cisco catalyst 9130ax Cisco catalyst 9130axe Cisco catalyst 9130axi Cisco catalyst 9136 Cisco catalyst 9162 Cisco catalyst 9164 Cisco catalyst 9166 Cisco catalyst 9166d1 Cisco cgr1000 Cisco cgr1000 Firmware Cisco ic3000 Industrial Compute Gateway Cisco ic3000 Industrial Compute Gateway Firmware Cisco ios Xe Cisco ir510 Wpan Cisco ir510 Wpan Firmware
CPEs		cpe:2.3:h:cisco:807_industrial_integrated_services_router:-:::::::* cpe:2.3:h:cisco:809_industrial_integrated_services_router:-:::::::* cpe:2.3:h:cisco:829_industrial_integrated_services_router:-:::::::* cpe:2.3:h:cisco:catalyst_9100:-:::::::* cpe:2.3:h:cisco:catalyst_9105:-:::::::* cpe:2.3:h:cisco:catalyst_9105ax:-:::::::* cpe:2.3:h:cisco:catalyst_9105axi:-:::::::* cpe:2.3:h:cisco:catalyst_9105axw:-:::::::* cpe:2.3:h:cisco:catalyst_9105i:-:::::::* cpe:2.3:h:cisco:catalyst_9105w:-:::::::* cpe:2.3:h:cisco:catalyst_9115:-:::::::* cpe:2.3:h:cisco:catalyst_9115_ap:-:::::::* cpe:2.3:h:cisco:catalyst_9115ax:-:::::::* cpe:2.3:h:cisco:catalyst_9115axe:-:::::::* cpe:2.3:h:cisco:catalyst_9115axi:-:::::::* cpe:2.3:h:cisco:catalyst_9117:-:::::::* cpe:2.3:h:cisco:catalyst_9117_ap:-:::::::* cpe:2.3:h:cisco:catalyst_9117ax:-:::::::* cpe:2.3:h:cisco:catalyst_9117axi:-:::::::* cpe:2.3:h:cisco:catalyst_9120:-:::::::* cpe:2.3:h:cisco:catalyst_9120_ap:-:::::::* cpe:2.3:h:cisco:catalyst_9120ax:-:::::::* cpe:2.3:h:cisco:catalyst_9120axe:-:::::::* cpe:2.3:h:cisco:catalyst_9120axi:-:::::::* cpe:2.3:h:cisco:catalyst_9120axp:-:::::::* cpe:2.3:h:cisco:catalyst_9124:-:::::::* cpe:2.3:h:cisco:catalyst_9124ax:-:::::::* cpe:2.3:h:cisco:catalyst_9124axd:-:::::::* cpe:2.3:h:cisco:catalyst_9124axi:-:::::::* cpe:2.3:h:cisco:catalyst_9124d:-:::::::* cpe:2.3:h:cisco:catalyst_9124e:-:::::::* cpe:2.3:h:cisco:catalyst_9124i:-:::::::* cpe:2.3:h:cisco:catalyst_9130:-:::::::* cpe:2.3:h:cisco:catalyst_9130_ap:-:::::::* cpe:2.3:h:cisco:catalyst_9130ax:-:::::::* cpe:2.3:h:cisco:catalyst_9130axe:-:::::::* cpe:2.3:h:cisco:catalyst_9130axi:-:::::::* cpe:2.3:h:cisco:catalyst_9136:-:::::::* cpe:2.3:h:cisco:catalyst_9162:-:::::::* cpe:2.3:h:cisco:catalyst_9164:-:::::::* cpe:2.3:h:cisco:catalyst_9166:-:::::::* cpe:2.3:h:cisco:catalyst_9166d1:-:::::::* cpe:2.3:h:cisco:cgr1000:-:::::::* cpe:2.3:h:cisco:ic3000_industrial_compute_gateway:-:::::::* cpe:2.3:h:cisco:ir510_wpan:-:::::::* cpe:2.3:o:cisco:807_industrial_integrated_services_router_firmware:::::::: cpe:2.3:o:cisco:809_industrial_integrated_services_router_firmware:::::::: cpe:2.3:o:cisco:829_industrial_integrated_services_router_firmware:::::::: cpe:2.3:o:cisco:cgr1000_firmware:::::::: cpe:2.3:o:cisco:ic3000_industrial_compute_gateway_firmware:::::::: cpe:2.3:o:cisco:ios_xe:::::::: cpe:2.3:o:cisco:ios_xe:16.1.1:::::::* cpe:2.3:o:cisco:ios_xe:16.1.2:::::::* cpe:2.3:o:cisco:ios_xe:16.1.3:::::::* cpe:2.3:o:cisco:ios_xe:16.2.1:::::::* cpe:2.3:o:cisco:ios_xe:16.2.2:::::::* cpe:2.3:o:cisco:ios_xe:16.3.10:::::::* cpe:2.3:o:cisco:ios_xe:16.3.11:::::::* cpe:2.3:o:cisco:ios_xe:16.3.1:::::::* cpe:2.3:o:cisco:ios_xe:16.3.1a:::::::* cpe:2.3:o:cisco:ios_xe:16.3.2:::::::* cpe:2.3:o:cisco:ios_xe:16.3.3:::::::* cpe:2.3:o:cisco:ios_xe:16.3.4:::::::* cpe:2.3:o:cisco:ios_xe:16.3.5:::::::* cpe:2.3:o:cisco:ios_xe:16.3.5b:::::::* cpe:2.3:o:cisco:ios_xe:16.3.6:::::::* cpe:2.3:o:cisco:ios_xe:16.3.7:::::::* cpe:2.3:o:cisco:ios_xe:16.3.8:::::::* cpe:2.3:o:cisco:ios_xe:16.3.9:::::::* cpe:2.3:o:cisco:ios_xe:16.4.1:::::::* cpe:2.3:o:cisco:ios_xe:16.4.2:::::::* cpe:2.3:o:cisco:ios_xe:16.4.3:::::::* cpe:2.3:o:cisco:ios_xe:16.5.1:::::::* cpe:2.3:o:cisco:ios_xe:16.5.1a:::::::* cpe:2.3:o:cisco:ios_xe:16.5.1b:::::::* cpe:2.3:o:cisco:ios_xe:16.5.2:::::::* cpe:2.3:o:cisco:ios_xe:16.5.3:::::::* cpe:2.3:o:cisco:ios_xe:17.1.1:::::::* cpe:2.3:o:cisco:ios_xe:17.1.1a:::::::* cpe:2.3:o:cisco:ios_xe:17.1.1s:::::::* cpe:2.3:o:cisco:ios_xe:17.1.1t:::::::* cpe:2.3:o:cisco:ios_xe:17.1.3:::::::* cpe:2.3:o:cisco:ios_xe:17.10.1:::::::* cpe:2.3:o:cisco:ios_xe:17.10.1a:::::::* cpe:2.3:o:cisco:ios_xe:17.10.1b:::::::* cpe:2.3:o:cisco:ios_xe:17.11.1:::::::* cpe:2.3:o:cisco:ios_xe:17.11.1a:::::::* cpe:2.3:o:cisco:ios_xe:17.11.99sw:::::::* cpe:2.3:o:cisco:ios_xe:17.12.1:::::::* cpe:2.3:o:cisco:ios_xe:17.12.1a:::::::* cpe:2.3:o:cisco:ios_xe:17.12.1w:::::::* cpe:2.3:o:cisco:ios_xe:17.12.1x:::::::* cpe:2.3:o:cisco:ios_xe:17.12.1y:::::::* cpe:2.3:o:cisco:ios_xe:17.12.1z1:::::::* cpe:2.3:o:cisco:ios_xe:17.12.1z2:::::::* cpe:2.3:o:cisco:ios_xe:17.12.1z4:::::::* cpe:2.3:o:cisco:ios_xe:17.12.1z:::::::* cpe:2.3:o:cisco:ios_xe:17.12.2:::::::* cpe:2.3:o:cisco:ios_xe:17.12.2a:::::::* cpe:2.3:o:cisco:ios_xe:17.12.3:::::::* cpe:2.3:o:cisco:ios_xe:17.12.3a:::::::* cpe:2.3:o:cisco:ios_xe:17.12.4:::::::* cpe:2.3:o:cisco:ios_xe:17.12.4a:::::::* cpe:2.3:o:cisco:ios_xe:17.12.4b:::::::* cpe:2.3:o:cisco:ios_xe:17.13.1:::::::* cpe:2.3:o:cisco:ios_xe:17.13.1a:::::::* cpe:2.3:o:cisco:ios_xe:17.14.1:::::::* cpe:2.3:o:cisco:ios_xe:17.14.1a:::::::* cpe:2.3:o:cisco:ios_xe:17.15.2:::::::* cpe:2.3:o:cisco:ios_xe:17.15.2a:::::::* cpe:2.3:o:cisco:ios_xe:17.15.2b:::::::* cpe:2.3:o:cisco:ios_xe:17.15.2c:::::::* cpe:2.3:o:cisco:ios_xe:17.2.1:::::::* cpe:2.3:o:cisco:ios_xe:17.2.1a:::::::* cpe:2.3:o:cisco:ios_xe:17.2.1r:::::::* cpe:2.3:o:cisco:ios_xe:17.2.1v:::::::* cpe:2.3:o:cisco:ios_xe:17.2.2:::::::* cpe:2.3:o:cisco:ios_xe:17.2.3:::::::* cpe:2.3:o:cisco:ios_xe:17.3.1:::::::* cpe:2.3:o:cisco:ios_xe:17.3.1a:::::::* cpe:2.3:o:cisco:ios_xe:17.3.1w:::::::* cpe:2.3:o:cisco:ios_xe:17.3.1x:::::::* cpe:2.3:o:cisco:ios_xe:17.3.1z:::::::* cpe:2.3:o:cisco:ios_xe:17.3.2:::::::* cpe:2.3:o:cisco:ios_xe:17.3.2a:::::::* cpe:2.3:o:cisco:ios_xe:17.3.3:::::::* cpe:2.3:o:cisco:ios_xe:17.3.4:::::::* cpe:2.3:o:cisco:ios_xe:17.3.4a:::::::* cpe:2.3:o:cisco:ios_xe:17.3.4b:::::::* cpe:2.3:o:cisco:ios_xe:17.3.4c:::::::* cpe:2.3:o:cisco:ios_xe:17.3.5:::::::* cpe:2.3:o:cisco:ios_xe:17.3.5a:::::::* cpe:2.3:o:cisco:ios_xe:17.3.5b:::::::* cpe:2.3:o:cisco:ios_xe:17.3.6:::::::* cpe:2.3:o:cisco:ios_xe:17.3.7:::::::* cpe:2.3:o:cisco:ios_xe:17.3.8:::::::* cpe:2.3:o:cisco:ios_xe:17.3.8a:::::::* cpe:2.3:o:cisco:ios_xe:17.4.1:::::::* cpe:2.3:o:cisco:ios_xe:17.4.1a:::::::* cpe:2.3:o:cisco:ios_xe:17.4.1b:::::::* cpe:2.3:o:cisco:ios_xe:17.4.2:::::::* cpe:2.3:o:cisco:ios_xe:17.4.2a:::::::* cpe:2.3:o:cisco:ios_xe:17.5.1:::::::* cpe:2.3:o:cisco:ios_xe:17.5.1a:::::::* cpe:2.3:o:cisco:ios_xe:17.6.1:::::::* cpe:2.3:o:cisco:ios_xe:17.6.1a:::::::* cpe:2.3:o:cisco:ios_xe:17.6.1w:::::::* cpe:2.3:o:cisco:ios_xe:17.6.1x:::::::* cpe:2.3:o:cisco:ios_xe:17.6.1y:::::::* cpe:2.3:o:cisco:ios_xe:17.6.1z1:::::::* cpe:2.3:o:cisco:ios_xe:17.6.1z:::::::* cpe:2.3:o:cisco:ios_xe:17.6.2:::::::* cpe:2.3:o:cisco:ios_xe:17.6.3:::::::* cpe:2.3:o:cisco:ios_xe:17.6.3a:::::::* cpe:2.3:o:cisco:ios_xe:17.6.4:::::::* cpe:2.3:o:cisco:ios_xe:17.6.5:::::::* cpe:2.3:o:cisco:ios_xe:17.6.5a:::::::* cpe:2.3:o:cisco:ios_xe:17.6.6:::::::* cpe:2.3:o:cisco:ios_xe:17.6.6a:::::::* cpe:2.3:o:cisco:ios_xe:17.6.7:::::::* cpe:2.3:o:cisco:ios_xe:17.6.8:::::::* cpe:2.3:o:cisco:ios_xe:17.6.8a:::::::* cpe:2.3:o:cisco:ios_xe:17.7.1:::::::* cpe:2.3:o:cisco:ios_xe:17.7.1a:::::::* cpe:2.3:o:cisco:ios_xe:17.7.1b:::::::* cpe:2.3:o:cisco:ios_xe:17.7.2:::::::* cpe:2.3:o:cisco:ios_xe:17.8.1:::::::* cpe:2.3:o:cisco:ios_xe:17.8.1a:::::::* cpe:2.3:o:cisco:ios_xe:17.9.1:::::::* cpe:2.3:o:cisco:ios_xe:17.9.1a:::::::* cpe:2.3:o:cisco:ios_xe:17.9.1w:::::::* cpe:2.3:o:cisco:ios_xe:17.9.1x1:::::::* cpe:2.3:o:cisco:ios_xe:17.9.1x:::::::* cpe:2.3:o:cisco:ios_xe:17.9.1y1:::::::* cpe:2.3:o:cisco:ios_xe:17.9.1y:::::::* cpe:2.3:o:cisco:ios_xe:17.9.2:::::::* cpe:2.3:o:cisco:ios_xe:17.9.2a:::::::* cpe:2.3:o:cisco:ios_xe:17.9.3:::::::* cpe:2.3:o:cisco:ios_xe:17.9.3a:::::::* cpe:2.3:o:cisco:ios_xe:17.9.4:::::::* cpe:2.3:o:cisco:ios_xe:17.9.4a:::::::* cpe:2.3:o:cisco:ios_xe:17.9.5:::::::* cpe:2.3:o:cisco:ios_xe:17.9.5a:::::::* cpe:2.3:o:cisco:ios_xe:17.9.5b:::::::* cpe:2.3:o:cisco:ios_xe:17.9.5e:::::::* cpe:2.3:o:cisco:ios_xe:17.9.5f:::::::* cpe:2.3:o:cisco:ios_xe:17.9.6:::::::* cpe:2.3:o:cisco:ios_xe:17.9.6a:::::::* cpe:2.3:o:cisco:ir510_wpan_firmware:-:::::::*
Vendors & Products		Cisco Cisco 807 Industrial Integrated Services Router Cisco 807 Industrial Integrated Services Router Firmware Cisco 809 Industrial Integrated Services Router Cisco 809 Industrial Integrated Services Router Firmware Cisco 829 Industrial Integrated Services Router Cisco 829 Industrial Integrated Services Router Firmware Cisco catalyst 9100 Cisco catalyst 9105 Cisco catalyst 9105ax Cisco catalyst 9105axi Cisco catalyst 9105axw Cisco catalyst 9105i Cisco catalyst 9105w Cisco catalyst 9115 Cisco catalyst 9115 Ap Cisco catalyst 9115ax Cisco catalyst 9115axe Cisco catalyst 9115axi Cisco catalyst 9117 Cisco catalyst 9117 Ap Cisco catalyst 9117ax Cisco catalyst 9117axi Cisco catalyst 9120 Cisco catalyst 9120 Ap Cisco catalyst 9120ax Cisco catalyst 9120axe Cisco catalyst 9120axi Cisco catalyst 9120axp Cisco catalyst 9124 Cisco catalyst 9124ax Cisco catalyst 9124axd Cisco catalyst 9124axi Cisco catalyst 9124d Cisco catalyst 9124e Cisco catalyst 9124i Cisco catalyst 9130 Cisco catalyst 9130 Ap Cisco catalyst 9130ax Cisco catalyst 9130axe Cisco catalyst 9130axi Cisco catalyst 9136 Cisco catalyst 9162 Cisco catalyst 9164 Cisco catalyst 9166 Cisco catalyst 9166d1 Cisco cgr1000 Cisco cgr1000 Firmware Cisco ic3000 Industrial Compute Gateway Cisco ic3000 Industrial Compute Gateway Firmware Cisco ios Xe Cisco ir510 Wpan Cisco ir510 Wpan Firmware

Wed, 07 May 2025 20:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Wed, 07 May 2025 17:45:00 +0000

Type	Values Removed	Values Added
Description		A vulnerability in the Cisco IOx application hosting environment of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the Cisco IOx application hosting environment to stop responding, resulting in a denial of service (DoS) condition. This vulnerability is due to the improper handling of HTTP requests. An attacker could exploit this vulnerability by sending crafted HTTP requests to an affected device. A successful exploit could allow the attacker to cause the Cisco IOx application hosting environment to stop responding. The IOx process will need to be manually restarted to recover services.
Weaknesses		CWE-307
References		https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iox-dos-95Fqnf7b
Metrics		cvssV3_1 `{'score': 5.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2025-05-07T17:38:10.585Z

Updated: 2025-05-07T19:42:21.616Z

Reserved: 2024-10-10T19:15:13.227Z

Link: CVE-2025-20196

Vulnrichment

Updated: 2025-05-07T18:56:58.471Z

NVD

Status : Analyzed

Published: 2025-05-07T18:15:39.927

Modified: 2025-07-11T14:55:33.920

Link: CVE-2025-20196

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-307

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

Exploitation none

Automatable yes

Technical Impact total

Project Subscriptions

Projects

JSON object

JSON object

JSON object

JSON object

JSON object