CVE-2025-20365

Name of the Vulnerable Software and Affected Versions Cisco Access Point Software (affected versions not specified)

Description A flaw exists in the IPv6 Router Advertisement (RA) packet processing that could allow an unauthenticated, adjacent attacker to modify the IPv6 gateway on an affected device. This is due to a logic error in how IPv6 RA packets received from wireless clients are processed. An attacker can exploit this by associating with a wireless network and sending specially crafted IPv6 RA packets, potentially changing the IPv6 gateway and causing intermittent packet loss for other wireless clients. The issue enables trivial gateway hijacking.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.