20 matches found
EUVD-2018-7342
Malware in sbrugna...
The vulnerability of the Access Control List configuration in Cisco IOS XE router operating systems of the ASR 900 and ASR 920 series allows a perpetrator to circumvent security restrictions.
The vulnerability of the Access Control List configuration on Cisco IOS XE routers of the ASR 900 and ASR 920 series involves deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to bypass security restrictions remotely...
Cisco ASR 900 安全漏洞
The Cisco ASR 900 is a 900 series aggregation services router from Cisco. A security vulnerability exists in the Cisco ASR 900 and ASR 920 that results from a hardware programming error when configuring ACLs using methods other than the configuration command line. An attacker could use this...
Cisco IOS XE Software for ASR 900 Series Route Switch Processor 3 Arbitrary Code Execution (cisco-sa-iosxe-rsp3-rce-jVHg8Z7c)
According to its self-reported version, IOS-XE for Cisco ASR 900 Series Aggregation Services Routers is affected by multiple vulnerabilities due to incorrect validations by boot scripts when specific ROM monitor ROMMON variables are set. An authenticated, local attacker with high privileges to...
Cisco IOS XE Arbitrary Code Execution Vulnerability (CNVD-2021-43443)
Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. An arbitrary code execution vulnerability exists in the initialization routines of Cisco IOS XE used by Cisco ASR 900 Series Aggregation Services Routers, which can be exploited b...
Cisco IOS XE Arbitrary Code Execution Vulnerability (CNVD-2021-43442)
Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. An arbitrary code execution vulnerability exists in the initialization routines of Cisco IOS XE used by the Cisco ASR 900 Series Aggregation Services Routers, which can be exploit...
CVE-2020-3513
Multiple vulnerabilities in the initialization routines that are executed during bootup of Cisco IOS XE Software for Cisco ASR 900 Series Aggregation Services Routers with a Route Switch Processor 3 RSP3 installed could allow an authenticated, local attacker with high privileges to execute...
CVE-2020-3416
Multiple vulnerabilities in the initialization routines that are executed during bootup of Cisco IOS XE Software for Cisco ASR 900 Series Aggregation Services Routers with a Route Switch Processor 3 RSP3 installed could allow an authenticated, local attacker with high privileges to execute...
Design/Logic Flaw
Multiple vulnerabilities in the initialization routines that are executed during bootup of Cisco IOS XE Software for Cisco ASR 900 Series Aggregation Services Routers with a Route Switch Processor 3 RSP3 installed could allow an authenticated, local attacker with high privileges to execute...
CVE-2020-3513 Cisco IOS XE Software for Cisco ASR 900 Series Route Switch Processor 3 Arbitrary Code Execution Vulnerabilities
Multiple vulnerabilities in the initialization routines that are executed during bootup of Cisco IOS XE Software for Cisco ASR 900 Series Aggregation Services Routers with a Route Switch Processor 3 RSP3 installed could allow an authenticated, local attacker with high privileges to execute...
CVE-2020-3513
CVE-2020-3513 affects Cisco IOS XE Software on Cisco ASR 900 Series Routers with Route Switch Processor 3 (RSP3). Connected advisories confirm multiple boot-time vulnerabilities tied to incorrect ROMMON variable handling and boot-script validation, enabling an authenticated local attacker with hi...
Cisco IOS XE Software for Cisco ASR 900 Series Route Switch Processor 3 Arbitrary Code Execution Vulnerabilities
Multiple vulnerabilities in the initialization routines that are executed during bootup of Cisco IOS XE Software for Cisco ASR 900 Series Aggregation Services Routers with a Route Switch Processor 3 RSP3 installed could allow an authenticated, local attacker with high privileges to execute...
Cisco ASR 900 Series ASR Denial of Service Vulnerability
Cisco 900 Series Aggregation Services Router ASR Software is a set of operating systems from Cisco that run in 900 Series router devices. A denial of service vulnerability exists in Cisco 900 Series ASR Software, which arises from the program's failure to adequately handle incoming broadcast...
Design/Logic Flaw
A vulnerability in Cisco 900 Series Aggregation Services Router ASR software could allow an unauthenticated, remote attacker to cause a partial denial of service DoS condition on an affected device. The vulnerability is due to insufficient handling of certain broadcast packets ingress to the...
CVE-2018-15464
A vulnerability in Cisco 900 Series Aggregation Services Router ASR software could allow an unauthenticated, remote attacker to cause a partial denial of service DoS condition on an affected device. The vulnerability is due to insufficient handling of certain broadcast packets ingress to the...
CVE-2018-15464
A vulnerability in Cisco 900 Series Aggregation Services Router ASR software could allow an unauthenticated, remote attacker to cause a partial denial of service DoS condition on an affected device. The vulnerability is due to insufficient handling of certain broadcast packets ingress to the...
CVE-2018-15464
The CVE-2018-15464 entry relates to Cisco 900 Series Aggregation Services Router (ASR) software. The vulnerability arises from insufficient handling of certain ingress broadcast packets, allowing an unauthenticated, remote attacker to send large streams of broadcasts and cause a partial DoS affec...
CVE-2016-6441
A vulnerability in the Transaction Language 1 TL1 code of Cisco ASR 900 Series routers could allow an unauthenticated, remote attacker to cause a reload of, or remotely execute code on, the affected system. This vulnerability affects Cisco ASR 900 Series Aggregation Services Routers ASR902, ASR90...
CVE-2016-6441
A vulnerability in the Transaction Language 1 TL1 code of Cisco ASR 900 Series routers could allow an unauthenticated, remote attacker to cause a reload of, or remotely execute code on, the affected system. This vulnerability affects Cisco ASR 900 Series Aggregation Services Routers ASR902, ASR90...
Cisco ASR 900 Series Aggregation Services Routers Buffer Overflow Vulnerability
A vulnerability in the Transaction Language 1 TL1 code of Cisco ASR 900 Series routers could allow an unauthenticated, remote attacker to cause a reload of, or remotely execute code on, the affected system. The vulnerability exists because the affected software performs incomplete bounds checks o...