{"uuid": "4b100907-013c-488e-9ea1-0d2ee7c1ef0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20188", "type": "seen", "source": "https://t.me/cibsecurity/84660", "content": "\ud83d\udd8b\ufe0f Cisco Patches CVE-2025-20188 (10.0 CVSS) in IOS XE That Enables Root Exploits via JWT \ud83d\udd8b\ufe0f\n\nCisco has released software fixes to address a maximumseverity security flaw in its IOS XE Wireless Controller that could enable an unauthenticated, remote attacker to upload arbitrary files to a susceptible system. The vulnerability, tracked as CVE202520188, has been rated 10.0 on the CVSS scoring system. \"This vulnerability is due to the presence of a hardcoded JSON Web Token JWT on an.\n\n\ud83d\udcd6 Read more.\n\n\ud83d\udd17 Via \"The Hacker News\"\n\n----------\n\ud83d\udc41\ufe0f Seen on @cibsecurity", "creation_timestamp": "2025-05-09T00:40:07.000000Z"}