Cisco IOS XE 安全漏洞

Cisco IOS XE is an operating system from Cisco, Inc. Used as a single operating system for enterprise wired and wireless access, aggregation, core, and WAN, Cisco IOS XE reduces business and network complexity. A security vulnerability exists in Cisco IOS XE that stems from misbehavior of API...

Cisco IOS和Cisco IOS XE 安全漏洞

Cisco IOS and Cisco IOS XE are both products of Cisco, Inc.Cisco IOS is a suite of operating systems developed for its network devices.Cisco IOS XE is a single operating system. Used as a single operating system for enterprise wired and wireless access, aggregation, core, and WAN, Cisco IOS XE...

Cisco IOS XE Software 代码问题漏洞

Cisco IOS XE Software is an operating system from Cisco for enterprise wired and wireless access, aggregation, core and WAN in a single operating system, Cisco IOS XE reduces business and network complexity. An error can be exploited by an attacker to cause a denial of service...

VulnCheck KEV: CVE-2018-0151

A vulnerability in the quality of service QoS subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition or execute arbitrary code with elevated privileges...

VulnCheck KEV: CVE-2017-12237

A vulnerability in the Internet Key Exchange Version 2 IKEv2 module of Cisco IOS and Cisco IOS XE could allow an unauthenticated, remote attacker to cause high CPU utilization, traceback messages, or a reload of an affected device that leads to a denial of service...

VulnCheck KEV: CVE-2018-0171

Cisco IOS and IOS XE Software improperly validates packet data, allowing an unauthenticated, remote attacker to trigger a reload of an affected device, cause a denial-of-service DoS condition, or perform code execution on the affected device...

Cisco IOS XE File System Override Access Vulnerability

Cisco IOS and IOS XE are a set of operating systems developed by Cisco for its network devices. A security vulnerability exists in the file system permissions of Cisco IOS XE, which stems from insufficient file system permissions on the affected devices. An attacker could use this vulnerability t...

CVE-2020-3511

A vulnerability in the ISDN subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service DoS condition. The vulnerability is due to insufficient input validation when the ISDN...

CVE-2020-3425

Multiple vulnerabilities in the web management framework of Cisco IOS XE Software could allow an authenticated, remote attacker with read-only privileges to elevate privileges to the level of an Administrator user on an affected device. For more information about these vulnerabilities, see the...

CVE-2020-3477

A vulnerability in the CLI parser of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, local attacker to access files from the flash: filesystem. The vulnerability is due to insufficient application of restrictions during the execution of a specific command. An attacker...

Cisco IOS XR Elevation of Privilege Vulnerability (CNVD-2020-51772)

Cisco IOS XR software is a modular and fully distributed network operating system for service provider networks. An elevation of privilege vulnerability exists in the CLI in Cisco IOS XR Software that stems from the lack of effective privilege-granting and access-control measures in a network...

Multiple Cisco Products Input Validation Error Vulnerability (CNVD-2020-32900)

Cisco NX-OS Software and so on are products of Cisco Corporation.Cisco NX-OS Software is a set of data center-grade operating system software used by switches.Cisco IOS is a set of operating systems developed for its network devices.IOS XE is a set of operating systems developed for its network...

CVE-2020-3234

A vulnerability in the virtual console authentication of Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers Industrial ISRs and Cisco 1000 Series Connected Grid Routers CGR1000 could allow an authenticated but low-privileged, local attacker to log in to the Virtual...

Cisco IOS and IOS XE Cross-Site Scripting Vulnerability

Cisco IOS and IOS XE are a set of operating systems developed by Cisco for its network devices. A cross-site scripting vulnerability exists in the web framework code in Cisco IOS and Cisco IOS XE, which stems from a program that fails to perform sufficient input validation. A remote attacker coul...

CVE-2019-1738

A vulnerability in the Network-Based Application Recognition NBAR feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability is due to a parsing issue on DNS packets. An attacker could exploit...

Cisco IOS and IOS XE ISDN Interface Denial of Service Vulnerability

Cisco IOS and IOS XE are a set of operating systems developed by Cisco for its network devices. An input validation vulnerability exists in the ISDN functionality in Cisco IOS and IOS XE, which stems from the program's failure to properly handle values in the Q.931 message element. A remote...

Cisco ASR 900 Cisco IOS XE Input Validation Vulnerability

The Cisco ASR 900 is a 900-series aggregation services router from Cisco, Inc.Cisco IOS XE is an operating system developed for Cisco network devices. An input validation vulnerability exists in Cisco IOS XE in the Cisco ASR 900 Route Switch Processor 3 that stems from the program's failure to...

CVE-2018-0484

A vulnerability in the access control logic of the Secure Shell SSH server of Cisco IOS and IOS XE Software may allow connections sourced from a virtual routing and forwarding VRF instance despite the absence of the vrf-also keyword in the access-class configuration. The vulnerability is due to a...

Cisco IOS Software Denial of Service Vulnerability (CNVD-2017-34216)

Cisco IOS is an operating system developed by Cisco for its network devices. A denial of service vulnerability exists in the PROFINET Discovery and Configuration Protocol PN-DCP implementation of Cisco IOS, which arises from the program's failure to properly parse PN-DCP Identify Request packets....

Cisco IOS and IOS XE SNMP Remote Code Execution Vulnerability (CNVD-2017-12533)

Cisco IOS is the interconnected Internet operating system used on most Cisco Systems routers and network switches. Cisco IOS and IOS XE SNMP Remote Code Execution Vulnerability. Allows remote attackers to cause an SNMP service buffer overflow by sending constructed SNMP packets, resulting in...