CVE-2025-20355 – Cisco Catalyst Center Software HTTP Open Redirect Vulnerability

CVE ID : CVE-2025-20355

Published : Nov. 13, 2025, 4:18 p.m. | 41 minutes ago

Description : A vulnerability in the web-based management interface of Cisco Catalyst Center Virtual Appliance could allow an unauthenticated, remote attacker to redirect a user to a malicious web page.

This vulnerability is due to improper input validation of HTTP request parameters. An attacker could exploit this vulnerability by intercepting and modifying an HTTP request from a user. A successful exploit could allow the attacker to redirect the user to a malicious web page.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…