CVE-2025-20311

Name of the Vulnerable Software and Affected Versions Cisco IOS XE Software for Catalyst 9000 Series Switches (affected versions not specified)

Description A flaw exists in how certain Ethernet frames are processed, potentially allowing a nearby, unauthenticated attacker to disrupt network traffic. Specifically, the issue can cause an outbound port to block all traffic, leading to a denial of service (DoS) condition. The root cause is improper handling of specially crafted Ethernet frames. An attacker can exploit this by sending these frames through an affected switch.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.