Critical SNMP stack overflow vulnerability in Cisco IOS/IOS XE that allows remote code execution with high privileges or denial of service with low privileges. Actively exploited in the wild against network infrastructure devices commonly exposed to the internet.
Data Source: CIRCL
Confidence: HIGH
Exploitation Method: DIRECT_NETWORK
📅 CVE Published: 2025-09-24
📅 Added to CISA KEV: 2025-09-29 5 DAYS BETWEEN CVE AND KEV
An attacker could exploit this vulnerability by sending a crafted SNMP packet to an affected device over IPv4 or IPv6 networks. This ...
Designated CVE-2025-20352, the vulnerability resides in the Simple Network Management Protocol (SNMP) subsystem of Cisco's core network software ...
CVE-2025-20333 is a critical vulnerability that has been exploited in the wild, as indicated by evidence linking it to an ongoing attack campaign. Patches are available in the first fixed releases for Cisco ASA and FTD software, and users are advised to migrate to these fixed releases to mitigate the risk.Attacks in the wild have been reported by CISA Known Exploited Vulnerability. Sep 25, 2025 at 4:30 PM / CISA Known Exploited Vulnerability.