Cisco has been discovered with an arbitrary code execution flaw on their Cisco IOS XR Software image verification checks, which allows an authenticated, local attacker to execute arbitrary code on their underlying operating system.
Cisco Internetwork Operating System (IOS) is a network operating system that can be used in large-scale enterprise environments for high-performance and reliable routing. It is a privately owned Operating System that runs on the Cisco Systems routers and switches.
This is a Time-of-Check Time-of-use (TOCTOU) race condition due to the install query sent to the ISO image during an ISO install operation. A threat actor can exploit this by modifying an ISO image and carrying out the install requests in parallel, resulting in an arbitrary code execution if the exploitation succeeds.
CISCO SYSTEMS GIVES the CVSS score for this vulnerability as 5.7 (Medium). Cisco has released a security advisory for addressing this vulnerability.
With DoControl, you can keep your SaaS applications and data safe and secure by creating workflows tailored to your needs. It’s an easy and efficient way to identify and manage risks. You can mitigate the risk and exposure of your organization’s SaaS applications in just a few simple steps.
As per the reports shared with Cyber Security News, the affected products are as mentioned below,
However, Cisco has confirmed that this product does not affect IOS Software, IOS XE Software, and NX-OS Software.
| Cisco IOS XR Release | First Fixed Release |
| Earlier than 7.5.2 | Not affected. |
| 7.5.2 and later | Migrate to a fixed release. |
| 7.6 and later | Not affected. |
| 7.7 and later | 7.10.1 |
Users of these products are recommended to upgrade to the latest version to fix this vulnerability and prevent them from getting exploited.
Keep informed about the latest cybersecurity news by following us on Google News, Linkedin, Twitter, and Facebook.
A recent security vulnerability in a widely used airline integration service has exposed millions of…
In a groundbreaking cybersecurity investigation, researchers identified several critical vulnerabilities in a target system, eventually…
A critical vulnerability in the Cacti performance monitoring framework tracked as CVE-2025-22604, has been disclosed,…
Cisco Talos researchers have identified an ongoing cyber campaign, active since mid-2024, deploying a previously…
A groundbreaking technique for exploiting Windows systems has emerged, combining the "Bring Your Own Vulnerable…
Microsoft has taken a significant step toward enhancing cybersecurity by introducing a new phishing attack…