Ssh-2.0-cisco-1.25 Vulnerability May 2026

This banner is frequently associated with a vulnerability where the SSH server does not properly validate the state during the handshake process.

Security scanners do not flag ssh-2.0-cisco-1.25 as a vulnerability itself. They flag it because historically, devices reporting this version are missing security patches for specific CVEs. ssh-2.0-cisco-1.25 vulnerability

If you see this banner, the device is likely vulnerable to one or more of the following: This banner is frequently associated with a vulnerability

ssh -oKexAlgorithms=diffie-hellman-group1-sha1 -c 3des-cbc user@target

If it connects without warning → vulnerable. If it connects without warning → vulnerable

By continuing to use this site, you agree to our use of cookies, which we use to improve our content, analyze site performance and to deliver personalised content. Click here to learn more.
Accept