Authenticated SNMP DoS in Cisco IOS Software via SNMP Parsing Error
CVE-2025-20174 Published on February 5, 2025
A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper error handling when parsing SNMP requests. An attacker could exploit this vulnerability by sending a crafted SNMP request to an affected device. A successful exploit could allow the attacker to cause the device to reload unexpectedly, resulting in a DoS condition. This vulnerability affects SNMP versions 1, 2c, and 3. To exploit this vulnerability through SNMP v2c or earlier, the attacker must know a valid read-write or read-only SNMP community string for the affected system. To exploit this vulnerability through SNMP v3, the attacker must have valid SNMP user credentials for the affected system.
Vulnerability Analysis
CVE-2025-20174 is exploitable with network access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality and integrity, and a high impact on availability.
Attack Vector:
NETWORK
Attack Complexity:
LOW
Privileges Required:
LOW
User Interaction:
NONE
Scope:
CHANGED
Confidentiality Impact:
NONE
Integrity Impact:
NONE
Availability Impact:
HIGH
Weakness Type
Buffer Access with Incorrect Length Value
The software uses a sequential operation to read or write a buffer, but it uses an incorrect length value that causes it to access memory that is outside of the bounds of the buffer. When the length value exceeds the size of the destination, a buffer overflow could occur.
Products Associated with CVE-2025-20174
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2025-20174 are published in these products:
Affected Versions
Cisco IOS:- Version 15.4(1)T is affected.
- Version 15.4(2)T is affected.
- Version 15.4(1)T2 is affected.
- Version 15.4(1)T1 is affected.
- Version 15.4(1)T3 is affected.
- Version 15.4(2)T1 is affected.
- Version 15.4(2)T3 is affected.
- Version 15.4(2)T2 is affected.
- Version 15.4(1)T4 is affected.
- Version 15.4(2)T4 is affected.
- Version 15.4(1)S is affected.
- Version 15.4(2)S is affected.
- Version 15.4(3)S is affected.
- Version 15.4(1)S1 is affected.
- Version 15.4(1)S2 is affected.
- Version 15.4(2)S1 is affected.
- Version 15.4(1)S3 is affected.
- Version 15.4(3)S1 is affected.
- Version 15.4(2)S2 is affected.
- Version 15.4(3)S2 is affected.
- Version 15.4(3)S3 is affected.
- Version 15.4(1)S4 is affected.
- Version 15.4(2)S3 is affected.
- Version 15.4(2)S4 is affected.
- Version 15.4(3)S4 is affected.
- Version 15.4(3)S5 is affected.
- Version 15.4(3)S6 is affected.
- Version 15.4(3)S7 is affected.
- Version 15.4(3)S6a is affected.
- Version 15.4(3)S8 is affected.
- Version 15.4(3)S9 is affected.
- Version 15.4(3)S10 is affected.
- Version 15.2(1)SY is affected.
- Version 15.2(1)SY1 is affected.
- Version 15.2(1)SY0a is affected.
- Version 15.2(1)SY2 is affected.
- Version 15.2(2)SY is affected.
- Version 15.2(1)SY1a is affected.
- Version 15.2(2)SY1 is affected.
- Version 15.2(2)SY2 is affected.
- Version 15.2(1)SY3 is affected.
- Version 15.2(1)SY4 is affected.
- Version 15.2(2)SY3 is affected.
- Version 15.2(1)SY5 is affected.
- Version 15.2(1)SY6 is affected.
- Version 15.2(1)SY7 is affected.
- Version 15.2(1)SY8 is affected.
- Version 15.4(1)CG is affected.
- Version 15.4(1)CG1 is affected.
- Version 15.4(2)CG is affected.
- Version 15.5(1)S is affected.
- Version 15.5(2)S is affected.
- Version 15.5(1)S1 is affected.
- Version 15.5(3)S is affected.
- Version 15.5(1)S2 is affected.
- Version 15.5(1)S3 is affected.
- Version 15.5(2)S1 is affected.
- Version 15.5(2)S2 is affected.
- Version 15.5(3)S1 is affected.
- Version 15.5(3)S1a is affected.
- Version 15.5(2)S3 is affected.
- Version 15.5(3)S2 is affected.
- Version 15.5(3)S0a is affected.
- Version 15.5(3)S3 is affected.
- Version 15.5(1)S4 is affected.
- Version 15.5(2)S4 is affected.
- Version 15.5(3)S4 is affected.
- Version 15.5(3)S5 is affected.
- Version 15.5(3)S6 is affected.
- Version 15.5(3)S6a is affected.
- Version 15.5(3)S7 is affected.
- Version 15.5(3)S6b is affected.
- Version 15.5(3)S8 is affected.
- Version 15.5(3)S9 is affected.
- Version 15.5(3)S10 is affected.
- Version 15.5(3)S9a is affected.
- Version 15.5(1)T is affected.
- Version 15.5(1)T1 is affected.
- Version 15.5(2)T is affected.
- Version 15.5(1)T3 is affected.
- Version 15.5(2)T1 is affected.
- Version 15.5(2)T2 is affected.
- Version 15.5(2)T3 is affected.
- Version 15.5(2)T4 is affected.
- Version 15.5(1)T4 is affected.
- Version 15.5(3)M is affected.
- Version 15.5(3)M1 is affected.
- Version 15.5(3)M0a is affected.
- Version 15.5(3)M2 is affected.
- Version 15.5(3)M3 is affected.
- Version 15.5(3)M4 is affected.
- Version 15.5(3)M4a is affected.
- Version 15.5(3)M5 is affected.
- Version 15.5(3)M6 is affected.
- Version 15.5(3)M7 is affected.
- Version 15.5(3)M6a is affected.
- Version 15.5(3)M8 is affected.
- Version 15.5(3)M9 is affected.
- Version 15.5(3)M10 is affected.
- Version 15.5(3)SN is affected.
- Version 15.6(1)S is affected.
- Version 15.6(2)S is affected.
- Version 15.6(2)S1 is affected.
- Version 15.6(1)S1 is affected.
- Version 15.6(1)S2 is affected.
- Version 15.6(2)S2 is affected.
- Version 15.6(1)S3 is affected.
- Version 15.6(2)S3 is affected.
- Version 15.6(1)S4 is affected.
- Version 15.6(2)S4 is affected.
- Version 15.6(1)T is affected.
- Version 15.6(2)T is affected.
- Version 15.6(1)T0a is affected.
- Version 15.6(1)T1 is affected.
- Version 15.6(2)T1 is affected.
- Version 15.6(1)T2 is affected.
- Version 15.6(2)T2 is affected.
- Version 15.6(1)T3 is affected.
- Version 15.6(2)T3 is affected.
- Version 15.3(1)SY is affected.
- Version 15.3(1)SY1 is affected.
- Version 15.3(1)SY2 is affected.
- Version 15.6(2)SP is affected.
- Version 15.6(2)SP1 is affected.
- Version 15.6(2)SP2 is affected.
- Version 15.6(2)SP3 is affected.
- Version 15.6(2)SP4 is affected.
- Version 15.6(2)SP5 is affected.
- Version 15.6(2)SP6 is affected.
- Version 15.6(2)SP7 is affected.
- Version 15.6(2)SP8 is affected.
- Version 15.6(2)SP9 is affected.
- Version 15.6(2)SN is affected.
- Version 15.6(3)M is affected.
- Version 15.6(3)M1 is affected.
- Version 15.6(3)M0a is affected.
- Version 15.6(3)M1b is affected.
- Version 15.6(3)M2 is affected.
- Version 15.6(3)M2a is affected.
- Version 15.6(3)M3 is affected.
- Version 15.6(3)M3a is affected.
- Version 15.6(3)M4 is affected.
- Version 15.6(3)M5 is affected.
- Version 15.6(3)M6 is affected.
- Version 15.6(3)M7 is affected.
- Version 15.6(3)M6a is affected.
- Version 15.6(3)M6b is affected.
- Version 15.6(3)M8 is affected.
- Version 15.6(3)M9 is affected.
- Version 15.4(1)SY is affected.
- Version 15.4(1)SY1 is affected.
- Version 15.4(1)SY2 is affected.
- Version 15.4(1)SY3 is affected.
- Version 15.4(1)SY4 is affected.
- Version 15.5(1)SY is affected.
- Version 15.5(1)SY1 is affected.
- Version 15.5(1)SY2 is affected.
- Version 15.5(1)SY3 is affected.
- Version 15.5(1)SY4 is affected.
- Version 15.5(1)SY5 is affected.
- Version 15.5(1)SY6 is affected.
- Version 15.5(1)SY7 is affected.
- Version 15.5(1)SY8 is affected.
- Version 15.5(1)SY9 is affected.
- Version 15.5(1)SY10 is affected.
- Version 15.5(1)SY11 is affected.
- Version 15.5(1)SY12 is affected.
- Version 15.5(1)SY13 is affected.
- Version 15.5(1)SY14 is affected.
- Version 15.7(3)M is affected.
- Version 15.7(3)M1 is affected.
- Version 15.7(3)M0a is affected.
- Version 15.7(3)M3 is affected.
- Version 15.7(3)M2 is affected.
- Version 15.7(3)M4 is affected.
- Version 15.7(3)M5 is affected.
- Version 15.7(3)M4a is affected.
- Version 15.7(3)M4b is affected.
- Version 15.7(3)M6 is affected.
- Version 15.7(3)M7 is affected.
- Version 15.7(3)M8 is affected.
- Version 15.7(3)M9 is affected.
- Version 15.8(3)M is affected.
- Version 15.8(3)M1 is affected.
- Version 15.8(3)M0a is affected.
- Version 15.8(3)M0b is affected.
- Version 15.8(3)M2 is affected.
- Version 15.8(3)M1a is affected.
- Version 15.8(3)M3 is affected.
- Version 15.8(3)M2a is affected.
- Version 15.8(3)M4 is affected.
- Version 15.8(3)M3a is affected.
- Version 15.8(3)M3b is affected.
- Version 15.8(3)M5 is affected.
- Version 15.8(3)M6 is affected.
- Version 15.8(3)M7 is affected.
- Version 15.8(3)M8 is affected.
- Version 15.8(3)M9 is affected.
- Version 15.9(3)M is affected.
- Version 15.9(3)M1 is affected.
- Version 15.9(3)M0a is affected.
- Version 15.9(3)M2 is affected.
- Version 15.9(3)M3 is affected.
- Version 15.9(3)M2a is affected.
- Version 15.9(3)M3a is affected.
- Version 15.9(3)M4 is affected.
- Version 15.9(3)M3b is affected.
- Version 15.9(3)M5 is affected.
- Version 15.9(3)M4a is affected.
- Version 15.9(3)M6 is affected.
- Version 15.9(3)M7 is affected.
- Version 15.9(3)M6a is affected.
- Version 15.9(3)M6b is affected.
- Version 15.9(3)M8 is affected.
- Version 15.9(3)M7a is affected.
- Version 15.9(3)M9 is affected.
- Version 15.9(3)M8b is affected.
- Version 15.9(3)M10 is affected.
- Version 15.9(3)M11 is affected.
- Version 3.11.1S is affected.
- Version 3.11.2S is affected.
- Version 3.11.0S is affected.
- Version 3.11.3S is affected.
- Version 3.11.4S is affected.
- Version 3.12.0S is affected.
- Version 3.12.1S is affected.
- Version 3.12.2S is affected.
- Version 3.12.3S is affected.
- Version 3.12.0aS is affected.
- Version 3.12.4S is affected.
- Version 3.13.0S is affected.
- Version 3.13.1S is affected.
- Version 3.13.2S is affected.
- Version 3.13.3S is affected.
- Version 3.13.4S is affected.
- Version 3.13.5S is affected.
- Version 3.13.2aS is affected.
- Version 3.13.0aS is affected.
- Version 3.13.5aS is affected.
- Version 3.13.6S is affected.
- Version 3.13.7S is affected.
- Version 3.13.6aS is affected.
- Version 3.13.7aS is affected.
- Version 3.13.8S is affected.
- Version 3.13.9S is affected.
- Version 3.13.10S is affected.
- Version 3.14.0S is affected.
- Version 3.14.1S is affected.
- Version 3.14.2S is affected.
- Version 3.14.3S is affected.
- Version 3.14.4S is affected.
- Version 3.15.0S is affected.
- Version 3.15.1S is affected.
- Version 3.15.2S is affected.
- Version 3.15.1cS is affected.
- Version 3.15.3S is affected.
- Version 3.15.4S is affected.
- Version 3.16.0S is affected.
- Version 3.16.1S is affected.
- Version 3.16.1aS is affected.
- Version 3.16.2S is affected.
- Version 3.16.2aS is affected.
- Version 3.16.0cS is affected.
- Version 3.16.3S is affected.
- Version 3.16.2bS is affected.
- Version 3.16.3aS is affected.
- Version 3.16.4S is affected.
- Version 3.16.4aS is affected.
- Version 3.16.4bS is affected.
- Version 3.16.5S is affected.
- Version 3.16.4dS is affected.
- Version 3.16.6S is affected.
- Version 3.16.7S is affected.
- Version 3.16.6bS is affected.
- Version 3.16.7aS is affected.
- Version 3.16.7bS is affected.
- Version 3.16.8S is affected.
- Version 3.16.9S is affected.
- Version 3.16.10S is affected.
- Version 3.17.0S is affected.
- Version 3.17.1S is affected.
- Version 3.17.2S is affected.
- Version 3.17.1aS is affected.
- Version 3.17.3S is affected.
- Version 3.17.4S is affected.
- Version 16.1.1 is affected.
- Version 16.1.2 is affected.
- Version 16.1.3 is affected.
- Version 16.2.1 is affected.
- Version 16.2.2 is affected.
- Version 16.3.1 is affected.
- Version 16.3.2 is affected.
- Version 16.3.3 is affected.
- Version 16.3.1a is affected.
- Version 16.3.4 is affected.
- Version 16.3.5 is affected.
- Version 16.3.5b is affected.
- Version 16.3.6 is affected.
- Version 16.3.7 is affected.
- Version 16.3.8 is affected.
- Version 16.3.9 is affected.
- Version 16.3.10 is affected.
- Version 16.3.11 is affected.
- Version 16.4.1 is affected.
- Version 16.4.2 is affected.
- Version 16.4.3 is affected.
- Version 16.5.1 is affected.
- Version 16.5.1a is affected.
- Version 16.5.1b is affected.
- Version 16.5.2 is affected.
- Version 16.5.3 is affected.
- Version 3.18.0aS is affected.
- Version 3.18.0S is affected.
- Version 3.18.1S is affected.
- Version 3.18.2S is affected.
- Version 3.18.3S is affected.
- Version 3.18.4S is affected.
- Version 3.18.0SP is affected.
- Version 3.18.1SP is affected.
- Version 3.18.1aSP is affected.
- Version 3.18.1bSP is affected.
- Version 3.18.1cSP is affected.
- Version 3.18.2SP is affected.
- Version 3.18.2aSP is affected.
- Version 3.18.3SP is affected.
- Version 3.18.4SP is affected.
- Version 3.18.3aSP is affected.
- Version 3.18.3bSP is affected.
- Version 3.18.5SP is affected.
- Version 3.18.6SP is affected.
- Version 3.18.7SP is affected.
- Version 3.18.8aSP is affected.
- Version 3.18.9SP is affected.
- Version 16.6.1 is affected.
- Version 16.6.2 is affected.
- Version 16.6.3 is affected.
- Version 16.6.4 is affected.
- Version 16.6.5 is affected.
- Version 16.6.4a is affected.
- Version 16.6.5a is affected.
- Version 16.6.6 is affected.
- Version 16.6.7 is affected.
- Version 16.6.8 is affected.
- Version 16.6.9 is affected.
- Version 16.6.10 is affected.
- Version 16.7.1 is affected.
- Version 16.7.1a is affected.
- Version 16.7.1b is affected.
- Version 16.7.2 is affected.
- Version 16.7.3 is affected.
- Version 16.7.4 is affected.
- Version 16.8.1 is affected.
- Version 16.8.1a is affected.
- Version 16.8.1b is affected.
- Version 16.8.1s is affected.
- Version 16.8.1c is affected.
- Version 16.8.1d is affected.
- Version 16.8.2 is affected.
- Version 16.8.1e is affected.
- Version 16.8.3 is affected.
- Version 16.9.1 is affected.
- Version 16.9.2 is affected.
- Version 16.9.1a is affected.
- Version 16.9.1b is affected.
- Version 16.9.1s is affected.
- Version 16.9.3 is affected.
- Version 16.9.4 is affected.
- Version 16.9.3a is affected.
- Version 16.9.5 is affected.
- Version 16.9.6 is affected.
- Version 16.9.7 is affected.
- Version 16.9.8 is affected.
- Version 16.10.1 is affected.
- Version 16.10.1a is affected.
- Version 16.10.1b is affected.
- Version 16.10.1s is affected.
- Version 16.10.1c is affected.
- Version 16.10.1e is affected.
- Version 16.10.1d is affected.
- Version 16.10.2 is affected.
- Version 16.10.1f is affected.
- Version 16.10.1g is affected.
- Version 16.10.3 is affected.
- Version 16.11.1 is affected.
- Version 16.11.1a is affected.
- Version 16.11.1b is affected.
- Version 16.11.2 is affected.
- Version 16.11.1s is affected.
- Version 16.12.1 is affected.
- Version 16.12.1s is affected.
- Version 16.12.1a is affected.
- Version 16.12.1c is affected.
- Version 16.12.1w is affected.
- Version 16.12.2 is affected.
- Version 16.12.1y is affected.
- Version 16.12.2a is affected.
- Version 16.12.3 is affected.
- Version 16.12.8 is affected.
- Version 16.12.2s is affected.
- Version 16.12.1x is affected.
- Version 16.12.1t is affected.
- Version 16.12.4 is affected.
- Version 16.12.3s is affected.
- Version 16.12.3a is affected.
- Version 16.12.4a is affected.
- Version 16.12.5 is affected.
- Version 16.12.6 is affected.
- Version 16.12.1z1 is affected.
- Version 16.12.5a is affected.
- Version 16.12.5b is affected.
- Version 16.12.1z2 is affected.
- Version 16.12.6a is affected.
- Version 16.12.7 is affected.
- Version 16.12.9 is affected.
- Version 16.12.10 is affected.
- Version 16.12.10a is affected.
- Version 16.12.11 is affected.
- Version 16.12.12 is affected.
- Version 17.1.1 is affected.
- Version 17.1.1a is affected.
- Version 17.1.1s is affected.
- Version 17.1.1t is affected.
- Version 17.1.3 is affected.
- Version 17.2.1 is affected.
- Version 17.2.1r is affected.
- Version 17.2.1a is affected.
- Version 17.2.1v is affected.
- Version 17.2.2 is affected.
- Version 17.2.3 is affected.
- Version 17.3.1 is affected.
- Version 17.3.2 is affected.
- Version 17.3.3 is affected.
- Version 17.3.1a is affected.
- Version 17.3.1w is affected.
- Version 17.3.2a is affected.
- Version 17.3.1x is affected.
- Version 17.3.1z is affected.
- Version 17.3.4 is affected.
- Version 17.3.5 is affected.
- Version 17.3.4a is affected.
- Version 17.3.6 is affected.
- Version 17.3.4b is affected.
- Version 17.3.4c is affected.
- Version 17.3.5a is affected.
- Version 17.3.5b is affected.
- Version 17.3.7 is affected.
- Version 17.3.8 is affected.
- Version 17.3.8a is affected.
- Version 17.4.1 is affected.
- Version 17.4.2 is affected.
- Version 17.4.1a is affected.
- Version 17.4.1b is affected.
- Version 17.4.2a is affected.
- Version 17.5.1 is affected.
- Version 17.5.1a is affected.
- Version 17.6.1 is affected.
- Version 17.6.2 is affected.
- Version 17.6.1w is affected.
- Version 17.6.1a is affected.
- Version 17.6.1x is affected.
- Version 17.6.3 is affected.
- Version 17.6.1y is affected.
- Version 17.6.1z is affected.
- Version 17.6.3a is affected.
- Version 17.6.4 is affected.
- Version 17.6.1z1 is affected.
- Version 17.6.5 is affected.
- Version 17.6.6 is affected.
- Version 17.6.6a is affected.
- Version 17.6.5a is affected.
- Version 17.6.7 is affected.
- Version 17.6.8 is affected.
- Version 17.6.8a is affected.
- Version 17.7.1 is affected.
- Version 17.7.1a is affected.
- Version 17.7.1b is affected.
- Version 17.7.2 is affected.
- Version 17.11.99SW is affected.
Exploit Probability
EPSS
0.37%
Percentile
58.27%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.