An attacker can exploit this vulnerability using the following methods:
Cisco’s Product Security Incident Response Team (PSIRT) noted attempted exploitation of this vulnerability in the wild as of June 2025. Exposure and Attack Surface ssh-2.0-cisco-1.25 vulnerability
The identifier is a software version string returned by the SSH banner on many Cisco IOS-based devices. While not a specific vulnerability name itself, this version string is frequently associated with several critical security flaws that affect the SSH implementation in Cisco IOS and IOS XE software. Notable Vulnerabilities Associated with Cisco SSH An attacker can exploit this vulnerability using the
(if SSHv1 is acceptable for your environment): ssh-2.0-cisco-1.25 vulnerability