CVE-2025-20189

Name of the Vulnerable Software and Affected Versions Cisco IOS XE Software for Cisco ASR 903 Aggregation Services Routers with Route Switch Processor 3 (RSP3C) (affected versions not specified)

Description A vulnerability in the Cisco Express Forwarding functionality could allow an unauthenticated, adjacent attacker to trigger a denial of service (DoS) condition due to improper memory management when processing Address Resolution Protocol (ARP) messages. An attacker could exploit this by sending crafted ARP messages at a high rate over a period of time to an affected device, exhausting system resources and triggering a reload of the active route switch processor (RSP).

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.