{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2025-20262", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "state": "PUBLISHED", "assignerShortName": "cisco", "dateReserved": "2024-10-10T19:15:13.243Z", "datePublished": "2025-08-27T16:23:46.232Z", "dateUpdated": "2025-08-27T18:19:53.930Z"}, "containers": {"cna": {"title": "Cisco Nexus 3000 and 9000 Series Switches Protocol Independent Multicast Version 6 Denial of Service Vulnerability", "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L", "baseScore": 5, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "LOW"}}], "descriptions": [{"lang": "en", "value": "A vulnerability in the Protocol Independent Multicast Version 6 (PIM6) feature of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an authenticated, low-privileged, remote attacker to trigger a crash of the PIM6 process, resulting in a denial of service (DoS) condition.\r\n\r\nThis vulnerability is due to improper processing of PIM6 ephemeral data queries. An attacker could exploit this vulnerability by sending a crafted ephemeral query to an affected device through one of the following methods: NX-API REST, NETCONF, RESTConf, gRPC, or Model Driven Telemetry. A successful exploit could allow the attacker to cause the PIM6 process to crash and restart, causing potential adjacency flaps and resulting in a DoS of the PIM6 and ephemeral query processes."}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxospc-pim6-vG4jFPh", "name": "cisco-sa-nxospc-pim6-vG4jFPh"}], "exploits": [{"lang": "en", "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."}], "source": {"advisory": "cisco-sa-nxospc-pim6-vG4jFPh", "discovery": "INTERNAL", "defects": ["CSCwn69044"]}, "problemTypes": [{"descriptions": [{"lang": "en", "description": "NULL Pointer Dereference", "type": "cwe", "cweId": "CWE-476"}]}], "affected": [{"vendor": "Cisco", "product": "Cisco NX-OS Software", "versions": [{"version": "9.2(3)", "status": "affected"}, {"version": "9.2(2v)", "status": "affected"}, {"version": "9.2(1)", "status": "affected"}, {"version": "9.2(2t)", "status": "affected"}, {"version": "9.2(3y)", "status": "affected"}, {"version": "9.3(2)", "status": "affected"}, {"version": "9.2(4)", "status": "affected"}, {"version": "9.3(1)", "status": "affected"}, {"version": "9.3(1z)", "status": "affected"}, {"version": "9.2(2)", "status": "affected"}, {"version": "9.3(3)", "status": "affected"}, {"version": "9.3(4)", "status": "affected"}, {"version": "9.3(5)", "status": "affected"}, {"version": "9.3(6)", "status": "affected"}, {"version": "10.1(2)", "status": "affected"}, {"version": "10.1(1)", "status": "affected"}, {"version": "9.3(5w)", "status": "affected"}, {"version": "9.3(7)", "status": "affected"}, {"version": "9.3(7k)", "status": "affected"}, {"version": "10.2(1)", "status": "affected"}, {"version": "9.3(7a)", "status": "affected"}, {"version": "9.3(8)", "status": "affected"}, {"version": "10.2(1q)", "status": "affected"}, {"version": "10.2(2)", "status": "affected"}, {"version": "9.3(9)", "status": "affected"}, {"version": "10.1(2t)", "status": "affected"}, {"version": "10.2(3)", "status": "affected"}, {"version": "10.2(3t)", "status": "affected"}, {"version": "9.3(10)", "status": "affected"}, {"version": "10.2(2a)", "status": "affected"}, {"version": "10.3(1)", "status": "affected"}, {"version": "10.2(4)", "status": "affected"}, {"version": "10.3(2)", "status": "affected"}, {"version": "9.3(11)", "status": "affected"}, {"version": "10.3(3)", "status": "affected"}, {"version": "10.2(5)", "status": "affected"}, {"version": "9.3(12)", "status": "affected"}, {"version": "10.2(3v)", "status": "affected"}, {"version": "10.4(1)", "status": "affected"}, {"version": "10.3(99w)", "status": "affected"}, {"version": "10.2(6)", "status": "affected"}, {"version": "10.3(3w)", "status": "affected"}, {"version": "10.3(99x)", "status": "affected"}, {"version": "10.3(3o)", "status": "affected"}, {"version": "10.3(4)", "status": "affected"}, {"version": "10.3(3p)", "status": "affected"}, {"version": "10.3(4a)", "status": "affected"}, {"version": "10.4(2)", "status": "affected"}, {"version": "10.3(3q)", "status": "affected"}, {"version": "9.3(13)", "status": "affected"}, {"version": "10.3(5)", "status": "affected"}, {"version": "10.2(7)", "status": "affected"}, {"version": "10.4(3)", "status": "affected"}, {"version": "10.3(3x)", "status": "affected"}, {"version": "10.3(4g)", "status": "affected"}, {"version": "10.5(1)", "status": "affected"}, {"version": "10.2(8)", "status": "affected"}, {"version": "10.3(3r)", "status": "affected"}, {"version": "10.3(6)", "status": "affected"}, {"version": "9.3(14)", "status": "affected"}, {"version": "10.4(4)", "status": "affected"}, {"version": "10.3(4h)", "status": "affected"}, {"version": "10.5(2)", "status": "affected"}, {"version": "10.4(4g)", "status": "affected"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2025-08-27T16:23:46.232Z"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-08-27T18:19:06.153576Z", "id": "CVE-2025-20262", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-08-27T18:19:53.930Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-20262", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-08-27T18:19:06.153576Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-08-27T18:19:34.642Z"}}], "cna": {"title": "Cisco Nexus 3000 and 9000 Series Switches Protocol Independent Multicast Version 6 Denial of Service Vulnerability", "source": {"defects": ["CSCwn69044"], "advisory": "cisco-sa-nxospc-pim6-vG4jFPh", "discovery": "INTERNAL"}, "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}}], "affected": [{"vendor": "Cisco", "product": "Cisco NX-OS Software", "versions": [{"status": "affected", "version": "9.2(3)"}, {"status": "affected", "version": "9.2(2v)"}, {"status": "affected", "version": "9.2(1)"}, {"status": "affected", "version": "9.2(2t)"}, {"status": "affected", "version": "9.2(3y)"}, {"status": "affected", "version": "9.3(2)"}, {"status": "affected", "version": "9.2(4)"}, {"status": "affected", "version": "9.3(1)"}, {"status": "affected", "version": "9.3(1z)"}, {"status": "affected", "version": "9.2(2)"}, {"status": "affected", "version": "9.3(3)"}, {"status": "affected", "version": "9.3(4)"}, {"status": "affected", "version": "9.3(5)"}, {"status": "affected", "version": "9.3(6)"}, {"status": "affected", "version": "10.1(2)"}, {"status": "affected", "version": "10.1(1)"}, {"status": "affected", "version": "9.3(5w)"}, {"status": "affected", "version": "9.3(7)"}, {"status": "affected", "version": "9.3(7k)"}, {"status": "affected", "version": "10.2(1)"}, {"status": "affected", "version": "9.3(7a)"}, {"status": "affected", "version": "9.3(8)"}, {"status": "affected", "version": "10.2(1q)"}, {"status": "affected", "version": "10.2(2)"}, {"status": "affected", "version": "9.3(9)"}, {"status": "affected", "version": "10.1(2t)"}, {"status": "affected", "version": "10.2(3)"}, {"status": "affected", "version": "10.2(3t)"}, {"status": "affected", "version": "9.3(10)"}, {"status": "affected", "version": "10.2(2a)"}, {"status": "affected", "version": "10.3(1)"}, {"status": "affected", "version": "10.2(4)"}, {"status": "affected", "version": "10.3(2)"}, {"status": "affected", "version": "9.3(11)"}, {"status": "affected", "version": "10.3(3)"}, {"status": "affected", "version": "10.2(5)"}, {"status": "affected", "version": "9.3(12)"}, {"status": "affected", "version": "10.2(3v)"}, {"status": "affected", "version": "10.4(1)"}, {"status": "affected", "version": "10.3(99w)"}, {"status": "affected", "version": "10.2(6)"}, {"status": "affected", "version": "10.3(3w)"}, {"status": "affected", "version": "10.3(99x)"}, {"status": "affected", "version": "10.3(3o)"}, {"status": "affected", "version": "10.3(4)"}, {"status": "affected", "version": "10.3(3p)"}, {"status": "affected", "version": "10.3(4a)"}, {"status": "affected", "version": "10.4(2)"}, {"status": "affected", "version": "10.3(3q)"}, {"status": "affected", "version": "9.3(13)"}, {"status": "affected", "version": "10.3(5)"}, {"status": "affected", "version": "10.2(7)"}, {"status": "affected", "version": "10.4(3)"}, {"status": "affected", "version": "10.3(3x)"}, {"status": "affected", "version": "10.3(4g)"}, {"status": "affected", "version": "10.5(1)"}, {"status": "affected", "version": "10.2(8)"}, {"status": "affected", "version": "10.3(3r)"}, {"status": "affected", "version": "10.3(6)"}, {"status": "affected", "version": "9.3(14)"}, {"status": "affected", "version": "10.4(4)"}, {"status": "affected", "version": "10.3(4h)"}, {"status": "affected", "version": "10.5(2)"}, {"status": "affected", "version": "10.4(4g)"}], "defaultStatus": "unknown"}], "exploits": [{"lang": "en", "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxospc-pim6-vG4jFPh", "name": "cisco-sa-nxospc-pim6-vG4jFPh"}], "descriptions": [{"lang": "en", "value": "A vulnerability in the Protocol Independent Multicast Version 6 (PIM6) feature of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an authenticated, low-privileged, remote attacker to trigger a crash of the PIM6 process, resulting in a denial of service (DoS) condition.\r\n\r\nThis vulnerability is due to improper processing of PIM6 ephemeral data queries. An attacker could exploit this vulnerability by sending a crafted ephemeral query to an affected device through one of the following methods: NX-API REST, NETCONF, RESTConf, gRPC, or Model Driven Telemetry. A successful exploit could allow the attacker to cause the PIM6 process to crash and restart, causing potential adjacency flaps and resulting in a DoS of the PIM6 and ephemeral query processes."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "cwe", "cweId": "CWE-476", "description": "NULL Pointer Dereference"}]}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2025-08-27T16:23:46.232Z"}}}, "cveMetadata": {"cveId": "CVE-2025-20262", "state": "PUBLISHED", "dateUpdated": "2025-08-27T18:19:53.930Z", "dateReserved": "2024-10-10T19:15:13.243Z", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "datePublished": "2025-08-27T16:23:46.232Z", "assignerShortName": "cisco"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability in the Protocol Independent Multicast Version 6 (PIM6) feature of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an authenticated, low-privileged, remote attacker to trigger a crash of the PIM6 process, resulting in a denial of service (DoS) condition.\r\n\r\nThis vulnerability is due to improper processing of PIM6 ephemeral data queries. An attacker could exploit this vulnerability by sending a crafted ephemeral query to an affected device through one of the following methods: NX-API REST, NETCONF, RESTConf, gRPC, or Model Driven Telemetry. A successful exploit could allow the attacker to cause the PIM6 process to crash and restart, causing potential adjacency flaps and resulting in a DoS of the PIM6 and ephemeral query processes."}, {"lang": "es", "value": "Una vulnerabilidad en la funci\u00f3n Protocol Independent Multicast Version 6 (PIM6) de los switches Cisco Nexus de las series 3000 y 9000 en modo NX-OS independiente podr\u00eda permitir que un atacante remoto autenticado y con pocos privilegios provoque un bloqueo del proceso PIM6, lo que resulta en una denegaci\u00f3n de servicio (DoS). Esta vulnerabilidad se debe al procesamiento incorrecto de las consultas de datos ef\u00edmeros de PIM6. Un atacante podr\u00eda explotar esta vulnerabilidad enviando una consulta ef\u00edmera manipulada a un dispositivo afectado mediante uno de los siguientes m\u00e9todos: NX-API REST, NETCONF, RESTConf, gRPC o telemetr\u00eda basada en modelos. Una explotaci\u00f3n exitosa podr\u00eda permitir al atacante provocar el bloqueo y reinicio del proceso PIM6, lo que podr\u00eda causar fluctuaciones de adyacencia y una denegaci\u00f3n de servicio (DoS) de PIM6 y los procesos de consulta ef\u00edmera."}], "id": "CVE-2025-20262", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.0, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 1.4, "source": "psirt@cisco.com", "type": "Secondary"}]}, "published": "2025-08-27T17:15:34.873", "references": [{"source": "psirt@cisco.com", "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxospc-pim6-vG4jFPh"}], "sourceIdentifier": "psirt@cisco.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-476"}], "source": "psirt@cisco.com", "type": "Secondary"}]}

{}

{"created": "2025-08-27T21:57:35.819877+00:00", "updated": "2025-08-27T21:57:35.819964+00:00", "vendors": ["cisco", "cisco$PRODUCT$nexus", "cisco$PRODUCT$nexus_3000", "cisco$PRODUCT$nexus_9000", "cisco$PRODUCT$nx-os"]}