CVE-2025-20339

Name of the Vulnerable Software and Affected Versions Cisco SD-WAN vEdge Software (affected versions not specified)

Description A flaw exists in how IPv4 packet access control lists (ACLs) are handled, potentially allowing a remote, unauthenticated attacker to circumvent configured ACLs. This is caused by the improper enforcement of an implicit deny all rule at the end of a configured ACL. An attacker could exploit this by sending unauthorized traffic to an interface on a vulnerable device, bypassing the intended security measures.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.