12 matches found
The vulnerability in the control interface of the Cisco IOS XE operating system for Cisco Catalyst 3650 and Catalyst 3850 devices allows a hacker to cause service interruptions.
The vulnerability of the Cisco IOS XE operating system control interface for Cisco Catalyst 3650 and Catalyst 3850 switches is related to improper management of resources during traffic processing. Exploiting this vulnerability can allow an attacker to cause service interruptions remotely...
Cisco Catalyst 3850 Series Device Manager Cross-Site Request Forgery
Cisco Catalyst 3850 Series are all different series of switching devices from Cisco USA. Cisco Catalyst 3850 Series Device Manager cross-site request forgery can be exploited by an attacker to perform an operation using the administrative privileges of a logged-in user accessing a malicious Web...
Cisco Catalyst 3850 Series Device Manager 3.6.10E Cross Site Request Forgery
Product : Catalyst 3850 Series Device Manager Version : 3.6.10E Date: 01.08.2019 Vendor Homepage: https://www.cisco.com Exploit Author: Alperen Soydan Description : The application interface allows users to perform certain actions via HTTP requests without performing any validity checks to verify...
Cisco Catalyst 3850 Series Device Manager - Cross-Site Request Forgery Vulnerability
Exploit for hardware platform in category web applications Product : Catalyst 3850 Series Device Manager Version : 3.6.10E Vendor Homepage: https://www.cisco.com Exploit Author: Alperen Soydan Description : The application interface allows users to perform certain actions via HTTP requests withou...
Cisco Catalyst 3850 and Catalyst 3650 Series Switches IOS XE Software Denial of Service Vulnerability
The Cisco Catalyst 3850 and Catalyst 3650 Series Switches are both different families of switching devices from Cisco, Inc.IOS XE Software is a set of operating systems running on them that is specific to Cisco devices. A denial of service vulnerability exists in the IP version 4 IPv4 processing...
CVE-2018-0177
A vulnerability in the IP Version 4 IPv4 processing code of Cisco IOS XE Software running on Cisco Catalyst 3850 and Cisco Catalyst 3650 Series Switches could allow an unauthenticated, remote attacker to cause high CPU utilization, traceback messages, or a reload of an affected device that leads ...
CVE-2018-0177
A vulnerability in the IP Version 4 IPv4 processing code of Cisco IOS XE Software running on Cisco Catalyst 3850 and Cisco Catalyst 3650 Series Switches could allow an unauthenticated, remote attacker to cause high CPU utilization, traceback messages, or a reload of an affected device that leads ...
CVE-2018-0177
Cisco IOS XE Software on Catalyst 3850 and 3650 Series switches is affected by CVE-2018-0177 due to a fault in IPv4 packet processing. An unauthenticated, remote attacker can trigger high CPU utilization, traceback messages, or a reload leading to DoS by sending specific IPv4 packets to an IPv4 a...
CVE-2018-0177
A vulnerability in the IP Version 4 IPv4 processing code of Cisco IOS XE Software running on Cisco Catalyst 3850 and Cisco Catalyst 3650 Series Switches could allow an unauthenticated, remote attacker to cause high CPU utilization, traceback messages, or a reload of an affected device that leads ...
CVE-2017-12222
A vulnerability in the wireless controller manager of Cisco IOS XE could allow an unauthenticated, adjacent attacker to cause a restart of the switch and result in a denial of service DoS condition. The vulnerability is due to insufficient input validation. An attacker could exploit this...
Input validation
A vulnerability in the wireless controller manager of Cisco IOS XE could allow an unauthenticated, adjacent attacker to cause a restart of the switch and result in a denial of service DoS condition. The vulnerability is due to insufficient input validation. An attacker could exploit this...
CVE-2017-12222
CVE-2017-12222 describes a DoS in Cisco IOS XE Wireless Controller Manager. An unauthenticated, adjacent attacker can trigger a restart of Cisco Catalyst 3650/3850 switches running IOS XE versions 16.1–16.3.3 by sending a crafted association request, due to insufficient input validation. The vuln...