CNNVD-202509-1524 Information

Sep 10, 2025 cve

CNNVD ID

CNNVD-202509-1524

CVE-2025-20159

CNNVD Published: 2025-09-10

Description (Chinese)

Cisco IOS XR是美国思科（Cisco）公司的一套为其网络设备开发的操作系统。 Cisco IOS XR存在访问控制错误漏洞，该漏洞源于管理接口ACL处理不当，可能导致绕过配置的ACL。

Description (English)

Cisco IOS XR is an operating system developed by Cisco Corporation for its network equipment. Cisco IOS XR has a bug in access control, which stems from the mismanagement of ACL, which could lead to circumventing the configuration of ACL.

Hazard Level

High

Vulnerability Type

访问控制错误

Affected Vendor

Citadel

Published

2025-09-10

Last Modified

2026-02-24

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-acl-packetio-Swjhhbtz

Patch

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-acl-packetio-Swjhhbtz

Share on: