CVE-2025-20111

Name of the Vulnerable Software and Affected Versions Cisco Nexus 3000 Series Switches (affected versions not specified) Cisco Nexus 9000 Series Switches (affected versions not specified)

Description A denial of service condition can be caused by an unauthenticated, adjacent attacker due to the incorrect handling of specific Ethernet frames. The attacker could exploit this by sending a sustained rate of crafted Ethernet frames to an affected device, causing it to reload unexpectedly.

Recommendations For Cisco Nexus 3000 Series Switches, update to a version that correctly handles Ethernet frames to prevent unexpected reloads. For Cisco Nexus 9000 Series Switches, update to a version that correctly handles Ethernet frames to prevent unexpected reloads. As a temporary workaround, consider restricting access to the device to minimize the risk of exploitation.