CVE-2025-20162

Name of the Vulnerable Software and Affected Versions Cisco IOS XE Software (affected versions not specified)

Description A vulnerability in the DHCP snooping security feature could allow an unauthenticated, remote attacker to cause a full interface queue wedge, resulting in a denial of service (DoS) condition. This issue is due to improper handling of DHCP request packets. An attacker could exploit this by sending DHCP request packets to an affected device, potentially causing packets to wedge in the queue and creating a DoS condition for downstream devices, which would require a system restart to resolve.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.