![Apple Officially Announces Return of 'Ted Lasso' for Fourth Season [Video]](https://www.iclarified.com/images/news/96710/96710/96710-640.jpg)
![Apple Plans Live Translation Feature for AirPods in iOS 19 [Report]](https://www.iclarified.com/images/news/96712/96712/96712-640.jpg)
![Apple Shares Official Trailer for 'F1' Starring Brad Pitt [Video]](https://www.iclarified.com/images/news/96714/96714/96714-640.jpg)
_Tanapong_Sungkaew_Alamy.jpg?#)
_JIRAROJ_PRADITCHAROENKUL_Alamy.jpg?#)
![[The AI Show Episode 139]: The Government Knows AGI Is Coming, Superintelligence Strategy, OpenAI’s $20,000 Per Month Agents & Top 100 Gen AI Apps](https://www.marketingaiinstitute.com/hubfs/ep%20139%20cover-2.png)
![[The AI Show Episode 138]: Introducing GPT-4.5, Claude 3.7 Sonnet, Alexa+, Deep Research Now in ChatGPT Plus & How AI Is Disrupting Writing](https://www.marketingaiinstitute.com/hubfs/ep%20138%20cover.png)
Cisco Warns of IOS XR Software Vulnerability That Let Attackers Trigger DoS condition
Cisco has issued security advisories for multiple vulnerabilities affecting its IOS XR Software, with particular emphasis on a significant memory corruption vulnerability in the Border Gateway Protocol (BGP) confederation implementation. The vulnerability tracked as CVE-2025-20115, with a CVSS score of 8.6, could allow unauthenticated, remote attackers to cause denial-of-service conditions on affected network infrastructure. The […] The post Cisco Warns of IOS XR Software Vulnerability That Let Attackers Trigger DoS condition appeared first on Cyber Security News.
Cisco has issued security advisories for multiple vulnerabilities affecting its IOS XR Software, with particular emphasis on a significant memory corruption vulnerability in the Border Gateway Protocol (BGP) confederation implementation.
The vulnerability tracked as CVE-2025-20115, with a CVSS score of 8.6, could allow unauthenticated, remote attackers to cause denial-of-service conditions on affected network infrastructure.
The BGP confederation vulnerability (cisco-sa-iosxr-bgp-dos-O7stePhX) stems from memory corruption that occurs when a BGP update contains an AS_CONFED_SEQUENCE attribute with 255 autonomous system numbers or more.
This buffer overflow vulnerability, classified as CWE-120, represents a significant threat to network stability for organizations using Cisco IOS XR with BGP confederation configured.
Cisco IOS XR Software Vulnerability
According to Cisco’s security advisory released on March 12, 2025, an attacker could exploit this vulnerability by sending crafted BGP update messages to trigger memory corruption, which may force the BGP process to restart and result in a network-wide denial of service condition.
The exploit path requires the attacker to control a BGP confederation speaker within the same autonomous system as the target or requires a network configuration where the AS_CONFED_SEQUENCE attribute naturally grows beyond the threshold size.
The vulnerability affects all Cisco IOS XR Software versions with BGP confederation enabled, including versions 7.11 and earlier, 24.1 and earlier, and 24.2 up to 24.2.20.
Risk Factors Details Affected Products Cisco IOS XR Software 7.11 and earlier, 24.1 and earlier, and 24.2 up to 24.2.20. Impact Complete denial of service Exploit Prerequisites Attacker must control a BGP confederation speaker within the same autonomous system as the victim CVSS 3.1 Score 8.6 (High)
Mitigations
Cisco has released software updates that address this vulnerability. Organizations using affected versions of IOS XR should upgrade to version 24.2.21 (future release), 24.3.1, or 24.4, which are unaffected.
For organizations unable to update immediately, Cisco has provided a workaround that restricts the BGP AS_CONFED_SEQUENCE attribute to 254 or fewer AS numbers using a routing policy that drops BGP updates with long AS path lengths on confederation peers.
The policy implementation involves creating a max-asns route policy and applying it to BGP neighbors:
This policy should then be applied to BGP neighbor configurations using “policy max-asns in” and “policy max-asns out” directives.
Network administrators can determine if their devices are vulnerable by checking for BGP confederation configuration using the “show running-config router bgp” command. If “bgp confederation peers” appear in the output, the device may be vulnerable.
Cisco’s Product Security Incident Response Team (PSIRT) notes they are not aware of any malicious exploitation attempts in the wild.
Organizations using affected versions should apply the relevant updates as soon as possible or implement the available workaround to restrict the BGP AS_CONFED_SEQUENCE attribute to 254 or fewer AS numbers.
Are you from SOC/DFIR Teams? – Analyse Malware Incidents & get live Access with ANY.RUN -> Start Now for Free.
The post Cisco Warns of IOS XR Software Vulnerability That Let Attackers Trigger DoS condition appeared first on Cyber Security News.
