As many as 2M Cisco devices affected by actively exploited 0-day
6 hours ago
- #Zero-Day
- #Cybersecurity
- #Cisco
- Up to 2 million Cisco devices are vulnerable to an actively exploited zero-day (CVE-2025-20352).
- The flaw affects all supported versions of Cisco IOS and IOS XE, allowing DoS or remote code execution (RCE) with root privileges.
- Exploitation requires SNMP access—either via compromised credentials or default/weak read-only community strings.
- Cisco urges users to patch immediately, as attacks are already occurring in the wild.
- The bug is a stack overflow in IOS’s SNMP handler, triggered by malicious SNMP packets.