CVE-2025-20160

HIGH

Cisco IOS Software - Info Disclosure

Title source: llm

Description

A vulnerability in the implementation of the TACACS+ protocol in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to view sensitive data or bypass authentication. This vulnerability exists because the system does not properly check whether the required TACACS+ shared secret is configured. A machine-in-the-middle attacker could exploit this vulnerability by intercepting and reading unencrypted TACACS+ messages or impersonating the TACACS+ server and falsely accepting arbitrary authentication requests. A successful exploit could allow the attacker to view sensitive information in a TACACS+ message or bypass authentication and gain access to the affected device.

References (1)

Core 1

Core References

Various Sources

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-tacacs-hdB7thJw

Scores

CVSS v3 8.1

EPSS 0.0008

EPSS Percentile 23.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-287

Status published

Products (50)

Cisco/Cisco IOS XE Software 16.10.1

Cisco/Cisco IOS XE Software 16.10.1a

Cisco/Cisco IOS XE Software 16.10.1b

Cisco/Cisco IOS XE Software 16.10.1c

Cisco/Cisco IOS XE Software 16.10.1d

Cisco/Cisco IOS XE Software 16.10.1e

Cisco/Cisco IOS XE Software 16.10.1f

Cisco/Cisco IOS XE Software 16.10.1g

Cisco/Cisco IOS XE Software 16.10.1s

Cisco/Cisco IOS XE Software 16.10.2

... and 40 more

Published Sep 24, 2025

Tracked Since Feb 18, 2026