CVE-2025-20177

Name of the Vulnerable Software and Affected Versions: Cisco IOS XR Software (affected versions not specified)

Description: A vulnerability in the boot process could allow an authenticated, local attacker to bypass image signature verification and load unverified software on an affected device. The attacker must have root-system privileges on the affected device. This issue is due to incomplete validation of files in the boot verification process, allowing an attacker to manipulate system configuration options and bypass integrity checks during the boot process. A successful exploit could enable the attacker to control the boot configuration, bypass the requirement to run Cisco-signed images, or alter the security properties of the running system.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.