Cisco Systems has issued 13 new security advisories addressing vulnerabilities in Cisco IOS and Cisco IOS XE. Published on September 24, 2025, the advisories highlight several issues that could impact different operating system versions.

While no vulnerabilities were rated Critical, eight of them were classified as High Severity. Among these, CVE-2025-20352 is particularly concerning, as it had already been exploited at the time of disclosure. Cisco strongly urges users to apply updates immediately and has provided official mitigation guidance.

The CVE-2025-20352 flaw affects devices with SNMP enabled. Although authentication is required, attackers can exploit the bug with crafted packets, leading to a stack overflow that causes denial of service. In scenarios where attackers have elevated privileges, remote code execution with root access may also be possible.

In reported cases, compromised local administrator credentials were used before exploiting CVE-2025-20352. Organizations should review their patch management strategy and apply the latest updates to prevent further attacks.

For more information, visit the Cisco Security Advisories page or track ongoing updates in the National Vulnerability Database.

Share this post

Author

Editorial Team
Editorial Team
The Editorial Team at Security Land is comprised of experienced professionals dedicated to delivering insightful analysis, breaking news, and expert perspectives on the ever-evolving threat landscape

Comments