Analysis Summary

CVE-2025-20236 CVSS:8.8

A vulnerability exists in the custom URL parser of Cisco Webex App that could allow an unauthenticated, remote attacker to trick a user into downloading arbitrary files. This issue stems from insufficient input validation when processing meeting invite links. An attacker could potentially persuade a user to click a maliciously crafted meeting invite link, which might enable the download of arbitrary files. If successfully exploited, this vulnerability could permit the attacker to execute arbitrary commands with the same privileges as the targeted user.

CVE-2025-20150 CVSS:5.3

A vulnerability in Cisco Nexus Dashboard allows an unauthenticated, remote attacker to enumerate LDAP user accounts. The issue stems from improper handling of LDAP authentication requests. An attacker could send authentication requests to an affected system, potentially determining valid LDAP usernames without authorization.

CVE-2025-20178 CVSS:6

Cisco Secure Network Analytics has a critical vulnerability in its web-based management interface. An authenticated remote attacker with administrative credentials can potentially execute root-level commands on the system. The vulnerability stems from weak integrity checks in device backup files. By creating a malicious backup file and restoring it to an affected device, an attacker could gain shell access with root privileges. This security flaw allows complete system compromise through a carefully crafted backup file restoration process.

Impact

• Gain Access
• Privilege Escalation

Indicators of Compromise

CVE

• CVE-2025-20236

• CVE-2025-20150

• CVE-2025-20178

Affected Vendors

Remediation

Refer to Cisco Security Advisory for patch, upgrade, or suggested workaround information.

CVE-2025-20236

CVE-2025-20150

CVE-2025-20178