July 2, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
PumaBot Targets IoT Devices via SSH Brute-Force – Active IOCs
June 4, 2025
Critical Threat: Gunra Ransomware Targets Critical Sectors Worldwide – Active IOCs
June 4, 2025
PumaBot Targets IoT Devices via SSH Brute-Force – Active IOCs
June 4, 2025
Critical Threat: Gunra Ransomware Targets Critical Sectors Worldwide – Active IOCs
June 4, 2025
Severity
Medium
Analysis Summary
CVE-2025-20261 CVSS:8.8
A vulnerability in the SSH connection handling of Cisco Integrated Management Controller (IMC) for Cisco UCS B-Series, UCS C-Series, UCS S-Series, and UCS X-Series Servers could allow an authenticated, remote attacker to access internal services with elevated privileges. This vulnerability is due to insufficient restrictions on access to internal services. An attacker with a valid user account could exploit this vulnerability by using crafted syntax when connecting to the Cisco IMC.
CVE-2025-20163 CVSS:8.7
A vulnerability in the SSH implementation of Cisco Nexus Dashboard Fabric Controller (NDFC) could allow an unauthenticated, remote attacker to impersonate Cisco NDFC-managed devices. This vulnerability is due to insufficient SSH host key validation. An attacker could exploit this vulnerability by performing a machine-in-the-middle attack on SSH connections to Cisco NDFC-managed devices, which could allow an attacker to intercept this traffic.
Impact
- Privilege Escalation
- Gain Access
Indicators of Compromise
CVE
CVE-2025-20261
CVE-2025-20163
Affected Vendors
- Cisco
Affected Products
- Cisco Unified Computing System (Managed) - 4.0(1a) - 3.2(3n) - 4.1(1a) - 4.1(1b) - 4.0(4h) - 4.1(1c) - 3.2(3k) - 3.2(2c) - 4.0(4e) - 4.0(4g) - 3.2(3i) - 4.0(2e) - 3.2(3g) - 4.0(4a) - 4.0(2d) - 3.2(2d) - 4.0(1b) - 4.0(4f) - 3.2(3h) - 3.2(2f) - 4.0(4c)
- Cisco Unified Computing System (Managed) - 3.2(3a) - 4.0(1c) - 3.2(3d) - 3.2(2b) - 4.0(4b) - 3.2(2e) - 4.0(2b) - 4.0(4d) - 3.2(1d) - 3.2(3e) - 3.2(3l) - 3.2(3b) - 4.0(2a) - 3.2(3j) - 4.0(1d) - 3.2(3o) - 4.0(4i) - 4.1(1d) - 4.1(2a) - 4.1(1e) - 3.2(3p)
- Cisco Unified Computing System (Managed) - 4.1(2b) - 4.0(4k) - 4.1(3a) - 4.1(3b)
- Cisco Unified Computing System (Managed) - 4.1(2c) - 4.0(4l) - 4.1(4a) - 4.1(3c) - 4.1(3d) - 4.2(1c) - 4.2(1d) - 4.0(4m) - 4.1(3e) - 4.2(1f) - 4.1(3f) - 4.2(1i) - 4.2(1k) - 4.0(4n) - 4.1(3h) - 4.2(1l) - 4.2(1m) - 4.1(3i) - 4.2(2a) - 4.2(1n) - 4.1(3j)
- Cisco Unified Computing System (Managed) - 4.2(2c) - 4.2(2d) - 4.2(3b) - 4.1(3k) - 4.0(4o) - 4.2(2e) - 4.2(3d) - 4.2(3e) - 4.2(3g) - 4.1(3l) - 4.3(2b) - 4.2(3h) - 4.2(3i)
- Cisco Unified Computing System (Managed) - 4.3(2c) - 4.1(3m) - 4.3(2e) - 4.3(3a) - 4.2(3j) - 4.3(3c) - 4.3(4a) - 4.3(4b) - 4.3(2f) - 4.1(3n)
- Cisco Unified Computing System (Standalone) - 4.0(2g) - 3.1(2i) - 3.1(1d) - 4.0(4i) - 4.1(1c) - 4.0(2c) - 4.0(1e) - 4.0(2h) - 4.0(4h) - 4.0(1h) - 4.0(2l) - 3.1(3g) - 4.0(1.240) - 4.0(2f) - 4.0(1g) - 4.0(2i)
- Cisco Unified Computing System (Standalone) - 3.1(3i) - 4.0(4d) - 4.1(1d) - 3.1(3c) - 4.0(4k) - 3.1(2d) - 3.1(3a) - 3.1(3j) - 4.0(2d) - 4.1(1f) - 4.0(4j) - 4.0(2m) - 4.0(2k) - 4.0(1c) - 4.0(4f) - 4.0(4c) -
- Cisco Unified Computing System (Standalone) - 3.1(2e) - 4.0(1a) - 4.0(1b) - 3.1(3b) - 4.0(4b) - 3.1(2b) - 4.0(4e) - 3.1(3h) - 4.0(4l) - 4.1(1g) - 4.1(2a) - 4.0(2n) - 4.1(1h) - 3.1(3k) - 4.1(2b)
- Cisco Unified Computing System (Standalone) - 4.0(2o) - 4.0(4m) - 4.1(2d) - 4.1(3b) - 4.0(2p) - 4.1(2e) - 4.1(2f) - 4.0(4n) - 4.0(2q) - 4.1(3c) - 4.0(2r) - 4.1(3d) - 4.1(2g) - 4.1(2h) - 4.1(3g) - 4.1(3f) - 4.1(2j)
- Cisco Unified Computing System (Standalone) - 4.1(2k) - 4.1(3h) - 4.2(2a) - 4.1(3i) - 4.1(3l) - 4.2(1e) - 4.2(1b) - 4.2(1j) - 4.2(1i) - 4.2(1f) - 4.2(1a) - 4.2(1c) - 4.2(1g) - 4.1(2l) - 4.1(3m) - 4.1(2m) - 4.1(3n)
- Cisco Nexus Dashboard - 3.1(1k) - 3.1(1l) - 3.2(1e) - 3.2(1i) - 3.3(1a) - 3.3(1b) - 3.3(2b) - 4.0(1i) - 3.3(2g)
- Cisco Data Center Network Manager - 11.5(3) - 12.0.1a - 11.5(3a) - 12.0.2d - 12.0.2f - 11.5(4) - 12.1.1 - 12.1.1e - 12.1.1p - 12.1.2e - 12.1.2p - 12.1.3b - 12.2.1 - 12.2.2
- Cisco Data Center Network Manager - 7.2(2a) - 10.1(2) - 7.1(1) - 12.1(1) - 11.1(1) - 10.3(1) - 10.3(1)R(1) - 7.0(1) - 10.0(1) - 7.1(2) - 11.4(1) - 10.4(2) - 11.3(1)
- Cisco Data Center Network Manager - 11.2(1) - 7.0(2) - 10.3(2)IPFM - 10.1(1) - 7.2(3) - 7.2(2) - 7.2(1) - 11.0(1) - 10.4(1) - 10.2(1)
Remediation
Refer to the Cisco Security Advisory for patch, upgrade, or suggested workaround information.