Denial of Service in Cisco IOS and IOS XE due to TWAMP Server Vulnerability
CVE-2025-20154

8.6HIGH

Key Information:

Vendor
Cisco
Status
Cisco iOS Xr Software
Vendor
CVE Published:
7 May 2025

Badges

👾 Exploit Exists

Summary

A vulnerability in the Two-Way Active Measurement Protocol (TWAMP) server feature within Cisco IOS Software and Cisco IOS XE Software allows unauthenticated remote attackers to exploit out-of-bounds array access when processing specially crafted TWAMP control packets. Successfully sending these packets could cause the affected device to reload, leading to a denial of service condition. In addition, the Cisco IOS XR Software may see the ipsla_ippm_server process reload unexpectedly, but only if debug mode is enabled. This vulnerability poses a risk to network resilience and operational continuity.

Affected Version(s)

Cisco IOS XR Software 6.5.3

Cisco IOS XR Software 6.5.29

Cisco IOS XR Software 6.5.1

References

https://sec.cloudapps.cisco.com/security/center/content/C...

CVSS V3.1

Score:
8.6
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Changed

Timeline

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-20154 : Denial of Service in Cisco IOS and IOS XE due to TWAMP Server Vulnerability | SecurityVulnerability.io