CVE-2025-20262

Name of the Vulnerable Software and Affected Versions: Cisco Nexus 3000 Series Switches Cisco Nexus 9000 Series Switches

Description: A vulnerability in the Protocol Independent Multicast Version 6 (PIM6) feature could allow an authenticated, low-privileged, remote attacker to trigger a crash of the PIM6 process, resulting in a denial of service (DoS) condition. This issue is due to improper processing of PIM6 ephemeral data queries. An attacker could exploit this by sending a crafted ephemeral query to an affected device through the following methods: NX-API REST, NETCONF, RESTConf, gRPC, or Model Driven Telemetry. A successful exploit could cause the PIM6 process to crash and restart, potentially causing adjacency flaps and resulting in a DoS of the PIM6 and ephemeral query processes.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.