Medium severity5.3NVD Advisory· Published May 7, 2025· Updated Jun 17, 2026
CVE-2025-20221
CVE-2025-20221
Description
A vulnerability in the packet filtering features of Cisco IOS XE SD-WAN Software could allow an unauthenticated, remote attacker to bypass Layer 3 and Layer 4 traffic filters. This vulnerability is due to improper traffic filtering conditions on an affected device. An attacker could exploit this vulnerability by sending a crafted packet to the affected device. A successful exploit could allow the attacker to bypass the Layer 3 and Layer 4 traffic filters and inject a crafted packet into the network.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 16.12.13
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.