CVE-2025-20257 MEDIUM

CVE-2025-20257: Cisco Secure Network Analytics API Authorization Vulnerability

Vendor Cisco

Product Cisco Secure Network Analytics

Weakness CWE-863 · Incorrect authorization

Published May 21, 2025

Last update May 21, 2025

View on NVD All CVEs

CVSS base score

6.5/10

Attack vector Network

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality None

Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

What the vulnerability does

01Description

A vulnerability in an API subsystem of Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager could allow an authenticated, remote attacker with low privileges to generate fraudulent findings that are used to generate alarms and alerts on an affected product. Thi vulnerability is due to insufficient authorization enforcement on a specific API. An attacker could exploit this vulnerability by authenticating as a low-privileged user and performing API calls with crafted input. A successful exploit could allow the attacker to obfuscate legitimate findings in analytics reports or create false indications with alarms and alerts on an affected device.

Key dates

02Disclosure timeline

May 21, 2025 CVE published

May 21, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2025-20257

Related vulnerabilities

CVE-2025-20257: Cisco Secure Network Analytics API Authorization Vulnerability

01Description

02Disclosure timeline

03References

04Related CVE