CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The vulnerability of Cisco IOS XE and Cisco IOS network devices from the Cisco Catalyst 4500 series and Cisco Catalyst 4500-X series lies in their lack of exception handling capabilities. This allows attackers to trigger a system reboot, cause an unexpected termination of an application, or induce a service failure.

The vulnerability of Cisco IOS and Cisco IOS XE software for Cisco Catalyst 4500 and Cisco Catalyst 4500-X network devices is related to exception handling flaws. Exploiting this vulnerability can allow an attacker to trigger a device reboot, a failed termination of the application, or a service...

8.6CVSS7.5AI score0.07747EPSS

Exploits0References4Affected Software2

CVE•added 2021/03/24 8:6 p.m.•80 views

CVE-2021-1451

The CVE-2021-1451 issue affects Cisco IOS XE Software Easy Virtual Switching System (VSS) on Cisco Catalyst 4500/4500-X switches. The root cause is improper boundary checks in Easy VSS protocol packets, allowing an unauthenticated, remote attacker to send crafted packets to UDP port 5500 while th...

9.8CVSS9.5AI score0.03209EPSS

Exploits0References1Affected Software1

Cisco•added 2021/03/24 4:0 p.m.•122 views

Cisco IOS XE Software Easy Virtual Switching System Arbitrary Code Execution Vulnerability

A vulnerability in the Easy Virtual Switching System VSS feature of Cisco IOS XE Software for Cisco Catalyst 4500 Series Switches and Cisco Catalyst 4500-X Series Switches could allow an unauthenticated, remote attacker to execute arbitrary code on the underlying Linux operating system of an...

8.1CVSS9.5AI score0.03209EPSS

Exploits0References1

CNVD•added 2020/06/04 12:0 a.m.•2 views

Cisco IOS and IOS XE Code Issue Vulnerabilities

Cisco IOS and IOS XE are a set of operating systems developed by Cisco for its network devices. A code issue vulnerability exists in the Simple Network Management Protocol SNMP subsystem of the IOS Software and IOS XE Software in the Cisco Catalyst 4500 Series, which arises from a program that do...

7.7CVSS9.3AI score0.01565EPSS

Exploits0References1

NVD•added 2020/06/03 6:15 p.m.•10 views

CVE-2020-3235

A vulnerability in the Simple Network Management Protocol SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software on Catalyst 4500 Series Switches could allow an authenticated, remote attacker to cause a denial of service DoS condition. The vulnerability is due to insufficient input...

7.7CVSS7.4AI score0.01565EPSS

Exploits0References2

Prion•added 2020/06/03 6:15 p.m.•18 views

Input validation

6.3CVSS7.8AI score0.01565EPSS

Exploits0References2Affected Software3

Cvelist•added 2020/06/03 5:55 p.m.•17 views

CVE-2020-3235 Cisco IOS and IOS XE Software Simple Network Management Protocol Denial of Service Vulnerability

7.7CVSS7.5AI score0.01565EPSS

Exploits0References2

CVE•added 2020/06/03 5:55 p.m.•69 views

CVE-2020-3235

CVE-2020-3235 affects Cisco IOS Software and Cisco IOS XE Software on Catalyst 4500 Series Switches. The root cause is insufficient input validation when processing certain SNMP object identifiers in the SNMP subsystem, enabling an authenticated, remote attacker to trigger a DoS by sending a craf...

7.7CVSS7.3AI score0.01565EPSS

Exploits0References2Affected Software2

Cisco•added 2020/06/03 4:0 p.m.•34 views

Cisco IOS and IOS XE Software Simple Network Management Protocol Denial of Service Vulnerability

7.7CVSS2.5AI score0.01565EPSS

Exploits0References1

Tenable Nessus•added 2019/11/08 12:0 a.m.•23 views

Cisco Ios Unspecified Vulnerability

A vulnerability in the Bidirectional Forwarding Detection BFD offload implementation of Cisco Catalyst 4500 Series Switches and Cisco Catalyst 4500-X Series Switches could allow an unauthenticated, remote attacker to cause a crash of the iosd process, causing a denial of service DoS condition. Th...

8.6CVSS1.3AI score0.07747EPSS

Exploits0References5

Tenable Nessus•added 2019/08/20 12:0 a.m.•35 views

Cisco IOS XE Software Catalyst 4500 Cisco Discovery Protocol Denial of Service Vulnerability

According to its self-reported version, Cisco IOS XE Software is affected by following vulnerability - A vulnerability in the Easy Virtual Switching System VSS of Cisco IOS XE Software on Catalyst 4500 Series Switches could allow an unauthenticated, adjacent attacker to cause the switches to...

7.4CVSS7.3AI score0.00713EPSS

Exploits0References4

NVD•added 2019/03/28 12:29 a.m.•19 views

CVE-2019-1750

A vulnerability in the Easy Virtual Switching System VSS of Cisco IOS XE Software on Catalyst 4500 Series Switches could allow an unauthenticated, adjacent attacker to cause the switches to reload. The vulnerability is due to incomplete error handling when processing Cisco Discovery Protocol CDP...

7.4CVSS7.4AI score0.00713EPSS

Exploits0References2

OSV•added 2019/03/28 12:29 a.m.•3 views

CVE-2019-1750

7.4CVSS7.1AI score0.00713EPSS

Exploits0References2

CNVD•added 2019/03/28 12:0 a.m.•2 views

Cisco IOS XE Catalyst 4500 Denial of Service Vulnerability

Cisco IOS XE is a modular operating system based on the Linux kernel. A denial of service vulnerability exists in the Simple Virtual Switching System VSS of the Cisco IOS XE software on Catalyst 4500 series switches, which stems from a failure to perform a complete processing error when handling...

7.4CVSS6.7AI score0.00713EPSS

Exploits0References1