What is the severity of CVE-2025-20212?

CVE-2025-20212 is classified as a high severity vulnerability due to its potential to cause a denial of service condition.

How do I fix CVE-2025-20212?

To mitigate CVE-2025-20212, apply the latest firmware updates provided by Cisco for the affected Meraki devices.

Which products are affected by CVE-2025-20212?

CVE-2025-20212 affects Cisco AnyConnect VPN, Cisco Meraki MX, and Cisco Meraki Z Series devices.

Who can exploit CVE-2025-20212?

CVE-2025-20212 can be exploited by authenticated, remote attackers.

What impact does CVE-2025-20212 have on Cisco Meraki devices?

CVE-2025-20212 can lead to a denial of service condition in the Cisco AnyConnect service on affected Cisco Meraki devices.

Vulnerability/
CVE-2025-20212

high

7.7

CWE

457

2/4/2025

7/4/2025

CVE-2025-20212

First published: Wed Apr 02 2025(Updated: )

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series devices could allow an authenticated, remote attacker to cause a denial of service (DoS) condition in the Cisco AnyConnect service on an affected device. To exploit this vulnerability, the attacker must have valid VPN user credentials on the affected device. This vulnerability exists because a variable is not initialized when an SSL VPN session is established. An attacker could exploit this vulnerability by supplying crafted attributes while establishing an SSL VPN session with an affected device. A successful exploit could allow the attacker to cause the Cisco AnyConnect VPN server to restart, resulting in the failure of the established SSL VPN sessions and forcing remote users to initiate a new VPN connection and reauthenticate. A sustained attack could prevent new SSL VPN connections from being established. Note: When the attack traffic stops, the Cisco AnyConnect VPN server recovers without manual intervention.

Credit: psirt@cisco.com

Affected Software	Affected Version	How to fix
Cisco AnyConnect Secure
Cisco Meraki MX
Cisco Meraki Z Series

Never miss a vulnerability like this again

Reference Links

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-meraki-mx-vpn-dos-vNRpDvfb

Frequently Asked Questions

What is the severity of CVE-2025-20212?
CVE-2025-20212 is classified as a high severity vulnerability due to its potential to cause a denial of service condition.
How do I fix CVE-2025-20212?
To mitigate CVE-2025-20212, apply the latest firmware updates provided by Cisco for the affected Meraki devices.
Which products are affected by CVE-2025-20212?
CVE-2025-20212 affects Cisco AnyConnect VPN, Cisco Meraki MX, and Cisco Meraki Z Series devices.
Who can exploit CVE-2025-20212?
CVE-2025-20212 can be exploited by authenticated, remote attackers.
What impact does CVE-2025-20212 have on Cisco Meraki devices?
CVE-2025-20212 can lead to a denial of service condition in the Cisco AnyConnect service on affected Cisco Meraki devices.

collector/mitre-cve
source/MITRE
agent/weakness
agent/type
agent/description
agent/first-publish-date
agent/references
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/softwarecombine
collector/nvd-api
source/NVD
agent/source
agent/author
agent/severity
agent/last-modified-date
agent/tags
agent/event
vendor/cisco
canonical/cisco anyconnect secure
canonical/cisco meraki mx
canonical/cisco meraki z series

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.