Cisco has released patche to fix vulnerability in IOS XE Software. The vulnerability is tracked as CVE-2025-20188 (CVSS score 10.0). An attacker could exploit of this vulnerability to trigger remote code execution, elevation of privilege and security restriction bypass on the affected system. The company says the vulnerability affects the following Cisco Products:

• Catalyst 9800-CL Wireless Controllers for Cloud

• Catalyst 9800 Embedded Wireless Controller for Catalyst 9300, 9400, and 9500 Series Switches

• Catalyst 9800 Series Wireless Controllers

• Embedded Wireless Controller on Catalyst APs

Details on all of the addressed vulnerabilities are available on Cisco’s security portal – cisco.com