Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

Cisco IOS XR Software — Vulnerabilities & Security Advisories 106

All 106 CVE vulnerabilities found in Cisco IOS XR Software, with AI-generated Chinese analysis, references, and POCs.

This page documents vulnerability aggregation data for the Cisco IOS XR Software product, focusing on a variety of weakness types classified under standard security taxonomies. The content compiles known security issues affecting this enterprise-grade operating system, ranging from remote code execution and privilege escalation flaws to input validation errors and information disclosure weaknesses. The collection covers vulnerabilities identified and published over the last several years, ensuring a comprehensive historical view of the product’s security landscape. Visitors to this resource can discover how Cisco has addressed specific security advisories over time, allowing for a clearer understanding of the vendor’s patch management practices and response timelines. Users can also analyze recurring patterns within specific weakness classes to better assess risk profiles associated with network infrastructure components. Furthermore, the page provides a detailed look at the vulnerability history for Cisco IOS XR Software, highlighting how security patches have evolved alongside the release of new software versions. This information is particularly valuable for security analysts, system administrators, and compliance officers who need to evaluate the residual risk of deploying or maintaining this software in critical environments. By aggregating these details in one location, the page facilitates efficient risk assessment and informed decision-making regarding network infrastructure security.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2026-20118 Cisco IOS-XR NCS 5500 and NCS 5700 Egress Packet Network Interfaces Aligner Interrupt Denial of Service Vulnerability CWE-460 6.8 Medium2026-03-11
CVE-2026-20046 Cisco IOS XR Software CLI Privilege Escalation Vulnerability CWE-264 8.8 High2026-03-11
CVE-2026-20074 Cisco IOS XR Software Multi-Instance Intermediate System-to-Intermediate System Denial of Service Vulnerability CWE-1287 7.4 High2026-03-11
CVE-2026-20040 Cisco IOS XR Software CLI Privilege Escalation Vulnerability CWE-78 8.8 High2026-03-11
CVE-2025-20340 Cisco IOS XR Address Resolution Protocol Broadcast Storm Vulnerability CWE-400 7.4 High2025-09-10
CVE-2025-20159 Cisco IOS XR Software Management Interface ACL Bypass Vulnerability CWE-284 5.3 Medium2025-09-10
CVE-2025-20248 Cisco IOS XR Software Image Verification Bypass Vulnerability CWE-347 6.0 Medium2025-09-10
CVE-2025-20154 Cisco IOS, IOS XE and IOS XR Software TWAMP Denial of Service Vulnerability CWE-20 8.6 High2025-05-07
CVE-2025-20209 Cisco IOS XR Software Internet Key Exchange Version 2 Denial of Service Vulnerability CWE-770 7.5 High2025-03-12
CVE-2025-20177 Cisco IOS XR Software Image Verification Bypass Vulnerability CWE-274 6.7 Medium2025-03-12
CVE-2025-20146 Cisco IOS XR Software for ASR 9000 Series Routers Layer 3 Multicast Routing Denial of Service Vulnerability CWE-20 8.6 High2025-03-12
CVE-2025-20145 Cisco IOS XR Software Access Control List Bypass Vulnerability CWE-264 5.8 Medium2025-03-12
CVE-2025-20144 Cisco IOS XR Software Access Control List Bypass Vulnerability CWE-284 4.0 Medium2025-03-12
CVE-2025-20143 Cisco IOS XR Software Secure Boot Bypass Vulnerability CWE-347 6.7 Medium2025-03-12
CVE-2025-20142 Cisco IOS XR Software for ASR 9000 Series Routers L2VPN Denial of Service Vulnerability CWE-20 8.6 High2025-03-12
CVE-2025-20141 Cisco IOS XR Software Release 7.9.2 Denial of Service Vulnerabillity CWE-770 7.4 High2025-03-12
CVE-2025-20138 Cisco IOS XR Software CLI Privilege Escalation Vulnerability CWE-78 8.8 High2025-03-12
CVE-2025-20115 Cisco IOS XR Software Border Gateway Protocol Denial of Service Vulnerability CWE-120 8.6 High2025-03-12
CVE-2021-1440 Cisco IOS XR Software BGP Resource Public Key Infrastructure Denial of Service Vulnerability CWE-617 6.8 Medium2024-11-18
CVE-2022-20655 Cisco 多款产品操作系统命令注入漏洞 CWE-78 8.8 High2024-11-15
CVE-2022-20846 Cisco IOS XR Software Cisco Discovery Protocol Buffer Overflow Vulnerability CWE-120 4.3 Medium2024-11-15
CVE-2022-20845 Cisco Network Convergence System 4000 Series TL1 Denial of Service Vulnerability CWE-789 6.0 Medium2024-11-15
CVE-2022-20849 Cisco IOS XR Software Broadband Network Gateway PPPoE Denial of Service Vulnerability CWE-391 6.1 Medium2024-11-15
CVE-2024-20304 Cisco IOS XR Software Packet Memory Exhaustion Vulnerability CWE-401 8.6 High2024-09-11
CVE-2024-20489 Cisco Routed Passive Optical Network Cleartext Password Vulnerability CWE-256 8.4 High2024-09-11
CVE-2024-20483 Cisco IOS XR PON Controller Command Injection Vulnerabilities CWE-78 7.2 High2024-09-11
CVE-2024-20406 Cisco IOS XR Software Intermediate System-to-Intermediate System Denial of Service Vulnerability CWE-20 7.4 High2024-09-11
CVE-2024-20381 Cisco Network Services Orchestrator Configuration Update Authorization Bypass Vulnerability CWE-285 8.8 High2024-09-11
CVE-2024-20317 Cisco IOS XR Software Layer 2 Services Denial of Service Vulnerability CWE-684 7.4 High2024-09-11
CVE-2024-20398 Cisco IOS XR Software Local Privilege Escalation Vulnerability CWE-78 8.8 High2024-09-11

All 106 known CVE vulnerabilities affecting Cisco IOS XR Software with full Chinese analysis, references, and POCs where available.