Cisco issued an alert regarding a critical vulnerability in IOS XE software for Wireless LAN Controllers allowing unauthenticated, remote file uploads and execution of commands with root rights. The flaw, identified as CVE-2025-20188, is exacerbated by a hardcoded JSON Web Token used by backend scripts. This vulnerability is particularly dangerous when the ‘Out-of-Band AP Image Download’ feature is enabled. Analysis by Horizon3 highlights the insufficient validation and misuse of a fallback secret that could facilitate exploitation by malicious actors.
Cisco disclosed a critical vulnerability in IOS XE software for Wireless LAN Controllers that enables unauthenticated attackers to upload files and execute commands with root privileges.
Horizon3's analysis identified that a hardcoded JWT fallback secret allows attackers to generate valid tokens, leading to the risk of serious exploitation if detected.
Collection
[
|
...
]