Cisco IOS XE
Easy fix1 remedy
cpe:2.3:a:cisco:ios_xe:*:*:*:*:*:*:*, +1 more
Easy fix1 remedy
- >= 17.8.1
- >= 17.7.1
- >= 17.3.1
- >= 17.15.1
- >= 17.12.1
- >= 17.15.3
- >= 17.13.1
- >= 17.4.1
- >= 17.17.1
Cisco IOS XE Software Secure Boot Bypass Vulnerability Allowing Persistent Code Execution
Vulnerability
A vulnerability in Cisco IOS XE Software could enable an authenticated, local attacker with level-15 privileges, or an unauthenticated attacker with physical access to the device, to execute persistent code at boot time, thereby disrupting the chain of trust. This vulnerability arises from improper validation of software packages, allowing an attacker to place a crafted file in a specific location on the device. Exploitation of this vulnerability could lead to the execution of persistent code on the underlying operating system, bypassing a critical security feature of the device.
Impact
Exploitation of this vulnerability allows for the execution of persistent code on the underlying operating system, bypassing a major security feature of the device.
Remediation
Cisco has released software updates to address this vulnerability. To determine the appropriate update, users can consult the Cisco Software Checker tool, which identifies security advisories impacting specific software releases and the earliest release that fixes those vulnerabilities.
Added: Sep 24, 2025, 6:53 PM
Updated: Sep 24, 2025, 6:53 PM
Vulnerability Rating
Custom Algorithm
spread
8.1impact
7.5exploitability
3.0remediation
8.3relevance
0.6threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.