327 matches found
Cisco NX-OS Software 操作系统命令注入漏洞
Cisco NX-OS Software is a set of data center-grade operating system software for switches from the U.S. company Cisco Cisco. A command injection vulnerability exists in Cisco NX-OS Software, which arises from insufficient validation of parameters passed to specific configuration CLI commands, and...
VulnCheck KEV: CVE-2024-20399
Cisco NX-OS contains a command injection vulnerability in the command line interface CLI that could allow an authenticated, local attacker to execute commands as root on the underlying operating system of an affected device...
CVE-2024-20308
A vulnerability in the IKEv1 fragmentation code of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a heap underflow, resulting in an affected device reloading. This vulnerability exists because crafted, fragmented IKEv1 packets are not properl...
Cisco IOS XE Software 安全漏洞
Cisco IOS XE Software is an operating system from Cisco, Inc. A single operating system for enterprise wired and wireless access, aggregation, core and WAN, Cisco IOS XE reduces business and network complexity. A security vulnerability exists in Cisco IOS XE Software that stems from a flaw in the...
多款Cisco产品安全漏洞
Cisco IOS and Cisco IOS XE Software are both products of Cisco, Inc.Cisco IOS is a set of operating systems developed for its network devices.Cisco IOS XE Software is an operating system. A single operating system for enterprise wired and wireless access, aggregation, core, and WAN, Cisco IOS XE...
Cisco IOS 和 IOS XE Software 代码问题漏洞
Cisco IOS and Cisco IOS XE Software are both products of Cisco, Inc.Cisco IOS is a set of operating systems developed for its network devices.Cisco IOS XE Software is an operating system. A single operating system for enterprise wired and wireless access, aggregation, core, and WAN, Cisco IOS XE...
The vulnerability of the Simple Network Management Plane (SNMP) server of the Cisco IOS operating system, which allows a hacker to bypass security restrictions
The vulnerability of the Simple Network Management Plane SNMP on the Cisco IOS operating system is related to deficiencies in access control based on Access Control Lists ACLs. Exploiting this vulnerability allows a malicious actor to bypass security restrictions remotely...
The vulnerability of the MPLS traffic processor of the Cisco NX-OS operating system allows a attacker to trigger a service failure.
The vulnerability of the MPLS traffic processor of the Cisco NX-OS operating system is related to copying data into a buffer without checking the size of the input data. Exploiting this vulnerability could allow an attacker to cause a service failure...
Cisco NX-OS Software Security Vulnerability
Cisco NX-OS Software is a set of data center-grade operating system software used by Cisco switches in the United States. A security vulnerability exists in Cisco NX-OS Software. An attacker could exploit this vulnerability to cause a denial of service...
The vulnerability of the Authentication, Authorization, and Accounting (AAA) function, as well as the SCP function of Cisco IOS and Cisco IOS XE operating systems, allows attackers to circumvent security restrictions and obtain or modify the configuration of vulnerable devices.
The vulnerability of the Authentication, Authorization, and Accounting AAA function and the SCP function of Cisco IOS and Cisco IOS XE operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to bypass security restrictions and obta...
The vulnerability in the function for protecting group IP traffic in the GET VPN implementation, based on the Group Domain of Interpretation (GDOI) and G-IKEv2 protocols, allows a attacker to execute arbitrary code, cause service failures, or gain full control over the application.
The vulnerability in the function for protecting group IP traffic in the GET VPN implementation of the Group Domain of Interpretation GDOI and G-IKEv2 protocols on Cisco IOS and IOS XE operating systems stems from the operation of operations beyond the buffer in memory when processing protocol...
The vulnerability of the Layer 2 Tunneling Protocol (L2TP) implementation in the Cisco IOS XE operating system allows a hacker to induce a service failure.
The vulnerability of the Layer 2 Tunneling Protocol L2TP implementation in the Cisco IOS XE operating system is related to improper cleaning or release of resources. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...
The vulnerability of the Multicast Leaf Recycle Elimination (mLRE) function in the Cisco IOS XE operating system for Cisco ASR Series 1000 routers allows a attacker to trigger a service failure.
The vulnerability of the Multicast Leaf Recycle Elimination mLRE function in the Cisco IOS XE router operating system from the Cisco ASR series 1000 is related to improper cleaning or release of resources. Exploiting this vulnerability can allow a malicious actor to trigger a service failure...
The vulnerability in the web interface of the Cisco IOS XE operating system allows a hacker to execute arbitrary commands.
The vulnerability of the Cisco IOS XE operating system’s web interface is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability allows an attacker to execute arbitrary commands...
Cisco IOS XE Software Input Validation Error Vulnerability
Cisco IOS XE Software is an operating system from Cisco, Inc. A single operating system for enterprise wired and wireless access, aggregation, core, and WAN, Cisco IOS XE reduces business and network complexity. A security vulnerability exists in Cisco IOS XE Software that stems from a flaw in th...
Cisco IOS XE Software Security Vulnerability
Cisco IOS XE Software is an operating system from Cisco, Inc. A single operating system for enterprise wired and wireless access, aggregation, core, and WAN, Cisco IOS XE reduces business and network complexity. A security vulnerability exists in Cisco IOS XE Software that stems from a flaw in th...
Cisco IOS Security Vulnerabilities
Cisco IOS is an operating system developed by Cisco for its network devices. A security vulnerability exists in the Cisco IOS software and Cisco IOS XE, which stems from a vulnerability in the authentication, authorization, and billing AAA functionality that could allow an authenticated, remote...
The vulnerability of the command-line interface of the Cisco operating system FX-OS in Cisco Firepower 1000, Firepower 2100, Firepower 4100, and Firepower 9300 Security Appliances allows a attacker to create or overwrite any file in the file system.
The vulnerability of the command-line interface of the Cisco operating system, Cisco FX-OS, in Cisco Firepower 1000, Firepower 2100, Firepower 4100, and Firepower 9300 Security Appliances, as well as the Secure Firewall 3100 Series, is related to the improper assignment of permissions for a...
The vulnerability of the CAPWAP control protocol implementation in the Cisco IOS XE operating system allows a attacker to trigger a service failure.
The vulnerability of the CAPWAP control protocol implementation in the Cisco IOS XE operating system is related to the use of resources with similar identifiers. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...
CVE-2023-20029
A vulnerability in the Meraki onboarding feature of Cisco IOS XE Software could allow an authenticated, local attacker to gain root level privileges on an affected device. This vulnerability is due to insufficient memory protection in the Meraki onboarding feature of an affected device. An attack...