VDB
CVE-2025-20350
CVE-2025-20350
PUBLISHED
De multiples vulnérabilités ont été découvertes dans les produits Cisco. Elles permettent à un attaquant de provoquer un déni de service à distance et une injection de code indirecte à distance (XSS).
EPSS 0.04% · 12.8th percentile
Risk Scores
EPSS Score
0.04%
12.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | IP Phone | |
| Cisco | Video Phone | |
| Cisco | Desk Phone |
Exploit Intelligence
- CIRCL seen: CVE-2025-20350 (circl-sighting)
- CIRCL seen: CVE-2025-20350 (circl-sighting)
- cisco-sa-phone-dos-FPyjLV7A (circl)
Timeline
- Oct 10, 2024 CVE ID Reserved
- Oct 15, 2025 Coalition ESS Score
- Oct 15, 2025 CVE Published
- Oct 15, 2025 PoC Published
- Oct 15, 2025 CVE Updated
- Oct 16, 2025 EPSS Score
- Oct 17, 2025 Coalition ESS Score
- Oct 17, 2025 PoC Published
- Oct 22, 2025 EPSS Score
- Oct 22, 2025 Coalition ESS Score
- Oct 28, 2025 EPSS Score
- Nov 3, 2025 EPSS Score