Main Vulnerability Database SB2025041702

SB2025041702 - Privilege escalation in Cisco Secure Network Analytics

Published: April 17, 2025

Security Bulletin ID SB2025041702

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Improper Verification of Cryptographic Signature (CVE-ID: CVE-2025-20178)

The vulnerability allows a remote user to escalate privileges on the system.

The vulnerability exists due to insufficient integrity checks within device backup files in the web-based management interface of Cisco Secure Network Analytics. A remote privileged user can bypass implemented signature verification processes using a specially crafted backup file and restore it on the system, which can result in obtaining root privileges.

Remediation

Install update from vendor's website.

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sna-prvesc-4BQmK33Z
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwn51215