Vulnerability Database

296,138

Total vulnerabilities in the database

CVE-2025-20186

A vulnerability in the web-based management interface of the Wireless LAN Controller feature of Cisco IOS XE Software could allow an authenticated, remote attacker with a lobby ambassador user account to perform a command injection attack against an affected device.

This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending crafted input to the web-based management interface. A successful exploit could allow the attacker to execute arbitrary Cisco IOS XE Software CLI commands with privilege level 15.

Note: This vulnerability is exploitable only if the attacker obtains the credentials for a lobby ambassador account. This account is not configured by default.

  • Published: May 7, 2025
  • Updated: May 8, 2025
  • CVE: CVE-2025-20186
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 8.8
  • AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

OWASP TOP 10:

Software From Fixed in
cisco / ios_xe 16.12.4 16.12.4.x
cisco / ios_xe 16.12.8 16.12.8.x
cisco / ios_xe 17.4.1 17.4.1.x
cisco / ios_xe 16.12.4a 16.12.4a.x
cisco / ios_xe 17.2.2 17.2.2.x
cisco / ios_xe 17.3.1 17.3.1.x
cisco / ios_xe 16.12.5 16.12.5.x
cisco / ios_xe 17.2.3 17.2.3.x
cisco / ios_xe 17.3.2 17.3.2.x
cisco / ios_xe 17.3.3 17.3.3.x
cisco / ios_xe 17.3.1a 17.3.1a.x
cisco / ios_xe 17.3.2a 17.3.2a.x
cisco / ios_xe 17.3.4a 17.3.4a.x
cisco / ios_xe 17.4.1a 17.4.1a.x
cisco / ios_xe 17.4.1b 17.4.1b.x
cisco / ios_xe 17.5.1 17.5.1.x
cisco / ios_xe 17.5.1a 17.5.1a.x
cisco / ios_xe 17.6.1 17.6.1.x
cisco / ios_xe 17.7.1 17.7.1.x
cisco / ios_xe 17.7.1a 17.7.1a.x
cisco / ios_xe 17.7.2 17.7.2.x
cisco / ios_xe 17.10.1 17.10.1.x
cisco / ios_xe 17.8.1 17.8.1.x
cisco / ios_xe 17.8.1a 17.8.1a.x
cisco / ios_xe 17.9.1 17.9.1.x
cisco / ios_xe 17.9.1a 17.9.1a.x
cisco / ios_xe 17.11.1 17.11.1.x
cisco / ios_xe 16.12.6 16.12.6.x
cisco / ios_xe 16.12.6a 16.12.6a.x
cisco / ios_xe 16.12.7 16.12.7.x
cisco / ios_xe 17.3.4 17.3.4.x
cisco / ios_xe 17.3.5 17.3.5.x
cisco / ios_xe 17.3.6 17.3.6.x
cisco / ios_xe 17.3.4c 17.3.4c.x
cisco / ios_xe 17.3.5a 17.3.5a.x
cisco / ios_xe 17.3.5b 17.3.5b.x
cisco / ios_xe 17.4.2 17.4.2.x
cisco / ios_xe 17.6.2 17.6.2.x
cisco / ios_xe 17.6.1a 17.6.1a.x
cisco / ios_xe 17.6.3 17.6.3.x
cisco / ios_xe 17.6.3a 17.6.3a.x
cisco / ios_xe 17.6.4 17.6.4.x
cisco / ios_xe 17.6.7 17.6.7.x
cisco / ios_xe 17.10.1a 17.10.1a.x
cisco / ios_xe 17.9.2 17.9.2.x
cisco / ios_xe 17.9.3 17.9.3.x
cisco / ios_xe 17.9.2a 17.9.2a.x
cisco / ios_xe 17.9.3a 17.9.3a.x
cisco / ios_xe 17.9.4 17.9.4.x
cisco / ios_xe 17.9.5 17.9.5.x
cisco / ios_xe 17.9.4a 17.9.4a.x
cisco / ios_xe 17.9.5a 17.9.5a.x
cisco / ios_xe 17.9.5b 17.9.5b.x
cisco / ios_xe 17.9.5e 17.9.5e.x
cisco / ios_xe 17.9.5f 17.9.5f.x
cisco / ios_xe 17.11.1a 17.11.1a.x
cisco / ios_xe 17.12.1 17.12.1.x
cisco / ios_xe 17.12.1a 17.12.1a.x
cisco / ios_xe 17.12.2 17.12.2.x
cisco / ios_xe 17.12.3 17.12.3.x
cisco / ios_xe 17.12.4 17.12.4.x
cisco / ios_xe 17.12.3a 17.12.3a.x
cisco / ios_xe 17.12.4a 17.12.4a.x
cisco / ios_xe 17.12.4b 17.12.4b.x
cisco / ios_xe 17.13.1 17.13.1.x
cisco / ios_xe 17.13.1a 17.13.1a.x
cisco / ios_xe 17.14.1 17.14.1.x
cisco / ios_xe 17.14.1a 17.14.1a.x
cisco / ios_xe 17.3.7 17.3.7.x
cisco / ios_xe 17.3.8 17.3.8.x
cisco / ios_xe 17.3.8a 17.3.8a.x
cisco / ios_xe 17.6.1y 17.6.1y.x
cisco / ios_xe 17.6.5 17.6.5.x
cisco / ios_xe 17.6.6 17.6.6.x
cisco / ios_xe 17.6.6a 17.6.6a.x
cisco / ios_xe 17.6.5a 17.6.5a.x