1. Home
  2. CVE Database
  3. CVE-2025-20126
MEDIUM · 4.8

CVE-2025-20126

A vulnerability in certification validation routines of Cisco ThousandEyes Endpoint Agent for macOS and RoomOS could allow an unauthenticated, remote attacker to intercept or manipulate metrics inform...

Vulnerability Description

A vulnerability in certification validation routines of Cisco ThousandEyes Endpoint Agent for macOS and RoomOS could allow an unauthenticated, remote attacker to intercept or manipulate metrics information. This vulnerability exists because the affected software does not properly validate certificates for hosted metrics services. An on-path attacker could exploit this vulnerability by intercepting network traffic using a crafted certificate. A successful exploit could allow the attacker to masquerade as a trusted host and monitor or change communications between the remote metrics service and the vulnerable client.

CVSS Score

4.8

MEDIUM

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
LOW
Integrity
LOW
Availability
NONE

Affected Products

VendorProductVersions
CiscoThousandeyes Endpoint Agent< 1.206.3
AppleMacos-
CiscoRoomos-

Related Weaknesses (CWE)

CWE-295

References

FAQ

What is CVE-2025-20126?

CVE-2025-20126 is a vulnerability with a CVSS score of 4.8 (MEDIUM). A vulnerability in certification validation routines of Cisco ThousandEyes Endpoint Agent for macOS and RoomOS could allow an unauthenticated, remote attacker to intercept or manipulate metrics inform...

How severe is CVE-2025-20126?

CVE-2025-20126 has been rated MEDIUM with a CVSS base score of 4.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-20126?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Thousandeyes Endpoint Agent, Apple Macos, Cisco Roomos.