Vulnslist

find the latest Cisco vulnerabilities

Cisco Application Policy Infrastructure Controller Vulnerabilities

cisco-sa-apic-multi-vulns-9ummtg5 · Medium · Published · Updated

Multiple vulnerabilities in Cisco Application Policy Infrastructure Controller (APIC) could allow an authenticated attacker to access sensitive information, execute arbitrary commands, cause a denial of service (DoS) condition, or perform cross-site scripting (XSS) attacks. To exploit these vulnerabilities, the attacker must have valid administrative credentials. For more information about these vulnerabilities, see the Details section of this advisory. Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apic-multi-vulns-9ummtg5

Cisco advisory ·CSAF JSON

Workarounds

There are no workarounds that address these vulnerabilities.

CVEsCVE-2025-20116, CVE-2025-20117, CVE-2025-20118, CVE-2025-20119
Cisco Bug IDsCSCwk18863, CSCwk18862, CSCwk18865, CSCwk18864
CVSS ScoreBase 4.8
Base 4.8 CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N/E:X/RL:X/RC:X
Base 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N/E:X/RL:X/RC:X
Base 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H/E:X/RL:X/RC:X
Base 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N/E:X/RL:X/RC:X
Product Names From Source
Cisco Application Policy Infrastructure Controller (APIC)

Related Products

Product CVE Evidence
Cisco RV Series Routers CVE-2025-20119 Cisco OpenVuln
Cisco RV Series Routers CVE-2025-20118 Cisco OpenVuln
Cisco RV Series Routers CVE-2025-20117 Cisco OpenVuln
Cisco RV Series Routers CVE-2025-20116 Cisco OpenVuln
Cisco Nexus Dashboard CVE-2025-20119 Cisco OpenVuln
Cisco Nexus Dashboard CVE-2025-20118 Cisco OpenVuln
Cisco Nexus Dashboard CVE-2025-20117 Cisco OpenVuln
Cisco Nexus Dashboard CVE-2025-20116 Cisco OpenVuln
Cisco MDS 9000 Family of Multilayer Switches CVE-2025-20119 Cisco OpenVuln
Cisco MDS 9000 Family of Multilayer Switches CVE-2025-20118 Cisco OpenVuln
Cisco MDS 9000 Family of Multilayer Switches CVE-2025-20117 Cisco OpenVuln
Cisco MDS 9000 Family of Multilayer Switches CVE-2025-20116 Cisco OpenVuln
Cisco Application Centric Infrastructure Virtual Edge CVE-2025-20119 Cisco OpenVuln
Cisco Application Centric Infrastructure Virtual Edge CVE-2025-20118 Cisco OpenVuln
Cisco Application Centric Infrastructure Virtual Edge CVE-2025-20117 Cisco OpenVuln
Cisco Application Centric Infrastructure Virtual Edge CVE-2025-20116 Cisco OpenVuln
Cisco Application Policy Infrastructure Controller (APIC) CVE-2025-20119 Cisco OpenVuln
Cisco Application Policy Infrastructure Controller (APIC) CVE-2025-20118 Cisco OpenVuln
Cisco Application Policy Infrastructure Controller (APIC) CVE-2025-20117 Cisco OpenVuln
Cisco Application Policy Infrastructure Controller (APIC) CVE-2025-20116 Cisco OpenVuln