Vulnerability Database

296,137

Total vulnerabilities in the database

CVE-2025-20115

A vulnerability in confederation implementation for the Border Gateway Protocol (BGP) in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.

This vulnerability is due to a memory corruption that occurs when a BGP update is created with an AS_CONFED_SEQUENCE attribute that has 255 autonomous system numbers (AS numbers). An attacker could exploit this vulnerability by sending a crafted BGP update message, or the network could be designed in such a manner that the AS_CONFED_SEQUENCE attribute grows to 255 AS numbers or more. A successful exploit could allow the attacker to cause memory corruption, which may cause the BGP process to restart, resulting in a DoS condition. To exploit this vulnerability, an attacker must control a BGP confederation speaker within the same autonomous system as the victim, or the network must be designed in such a manner that the AS_CONFED_SEQUENCE attribute grows to 255 AS numbers or more.

  • Published: Mar 12, 2025
  • Updated: May 4, 2025
  • CVE: CVE-2025-20115
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 8.6
  • AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

CWEs:

Software From Fixed in
cisco / ios_xr 7.0.1 7.0.1.x
cisco / ios_xr 7.1.1 7.1.1.x
cisco / ios_xr 6.5.1 6.5.1.x
cisco / ios_xr 6.5.2 6.5.2.x
cisco / ios_xr 6.5.3 6.5.3.x
cisco / ios_xr 6.6.1 6.6.1.x
cisco / ios_xr 7.4.1 7.4.1.x
cisco / ios_xr 24.1.1 24.1.1.x
cisco / ios_xr 6.6.2 6.6.2.x
cisco / ios_xr 6.6.25 6.6.25.x
cisco / ios_xr 6.6.3 6.6.3.x
cisco / ios_xr 7.0.2 7.0.2.x
cisco / ios_xr 7.0.11 7.0.11.x
cisco / ios_xr 7.0.12 7.0.12.x
cisco / ios_xr 7.1.15 7.1.15.x
cisco / ios_xr 7.1.2 7.1.2.x
cisco / ios_xr 6.7.1 6.7.1.x
cisco / ios_xr 7.2.0 7.2.0.x
cisco / ios_xr 7.4.2 7.4.2.x
cisco / ios_xr 6.8.2 6.8.2.x
cisco / ios_xr 7.5.12 7.5.12.x
cisco / ios_xr 7.5.3 7.5.3.x
cisco / ios_xr 7.5.4 7.5.4.x
cisco / ios_xr 7.5.5 7.5.5.x
cisco / ios_xr 7.6.2 7.6.2.x
cisco / ios_xr 7.6.3 7.6.3.x
cisco / ios_xr 7.8.2 7.8.2.x
cisco / ios_xr 7.8.22 7.8.22.x
cisco / ios_xr 7.7.1 7.7.1.x
cisco / ios_xr 7.7.2 7.7.2.x
cisco / ios_xr 7.7.21 7.7.21.x
cisco / ios_xr 6.9.1 6.9.1.x
cisco / ios_xr 6.9.2 6.9.2.x
cisco / ios_xr 7.9.1 7.9.1.x
cisco / ios_xr 7.9.2 7.9.2.x
cisco / ios_xr 7.9.21 7.9.21.x
cisco / ios_xr 7.10.1 7.10.1.x
cisco / ios_xr 7.10.2 7.10.2.x
cisco / ios_xr 7.11.1 7.11.1.x
cisco / ios_xr 24.1.2 24.1.2.x
cisco / ios_xr 24.2.1 24.2.1.x
cisco / ios_xr 24.2.11 24.2.11.x
cisco / ios_xr 7.2.2 7.2.2.x
cisco / ios_xr 7.3.1 7.3.1.x
cisco / ios_xr 7.3.15 7.3.15.x
cisco / ios_xr 7.3.16 7.3.16.x
cisco / ios_xr 7.3.2 7.3.2.x
cisco / ios_xr 7.3.27 7.3.27.x
cisco / ios_xr 7.3.3 7.3.3.x
cisco / ios_xr 7.3.4 7.3.4.x
cisco / ios_xr 7.3.5 7.3.5.x
cisco / ios_xr 7.3.6 7.3.6.x
cisco / ios_xr 7.4.15 7.4.15.x
cisco / ios_xr 7.4.16 7.4.16.x
cisco / ios_xr 6.8.1 6.8.1.x
cisco / ios_xr 7.5.1 7.5.1.x
cisco / ios_xr 7.5.2 7.5.2.x
cisco / ios_xr 7.5.52 7.5.52.x
cisco / ios_xr 7.6.1 7.6.1.x
cisco / ios_xr 7.6.15 7.6.15.x
cisco / ios_xr 7.8.1 7.8.1.x
cisco / ios_xr 7.8.12 7.8.12.x
cisco / ios_xr 7.11.2 7.11.2.x
cisco / ios_xr 24.2.2 24.2.2.x
cisco / ios_xr 24.2.20 24.2.20.x
cisco / ios_xr 6.5.29 6.5.29.x
cisco / ios_xr 6.5.92 6.5.92.x
cisco / ios_xr 6.5.15 6.5.15.x
cisco / ios_xr 6.5.26 6.5.26.x
cisco / ios_xr 6.5.25 6.5.25.x
cisco / ios_xr 6.5.28 6.5.28.x
cisco / ios_xr 6.5.93 6.5.93.x
cisco / ios_xr 6.5.90 6.5.90.x
cisco / ios_xr 6.5.31 6.5.31.x
cisco / ios_xr 6.5.32 6.5.32.x
cisco / ios_xr 6.5.33 6.5.33.x
cisco / ios_xr 6.6.11 6.6.11.x
cisco / ios_xr 6.6.12 6.6.12.x
cisco / ios_xr 6.6.4 6.6.4.x
cisco / ios_xr 7.0.0 7.0.0.x
cisco / ios_xr 7.0.90 7.0.90.x
cisco / ios_xr 7.0.14 7.0.14.x
cisco / ios_xr 7.1.25 7.1.25.x
cisco / ios_xr 7.1.3 7.1.3.x
cisco / ios_xr 6.7.2 6.7.2.x
cisco / ios_xr 6.7.3 6.7.3.x
cisco / ios_xr 6.7.4 6.7.4.x
cisco / ios_xr 6.7.35 6.7.35.x
cisco / ios_xr 7.2.1 7.2.1.x
cisco / ios_xr 7.2.12 7.2.12.x
cisco / ios_xr 7.8.23 7.8.23.x
cisco / ios_xr 7.11.21 7.11.21.x
cisco / ios_xr 6.5.35 6.5.35.x