Cisco IOS XE 安全漏洞

Cisco IOS XE is an operating system from Cisco, Inc. Used as a single operating system for enterprise wired and wireless access, aggregation, core, and WAN, Cisco IOS XE reduces business and network complexity. A security vulnerability exists in Cisco IOS XE that stems from misbehavior of API...

The vulnerability of the SNMP protocol implementation in Cisco IOS and IOS XE operating systems allows a intruder to trigger a service failure.

The vulnerability of the SNMP protocol implementation in Cisco IOS and IOS XE operating systems is related to access to the buffer with an incorrect length value. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

Cisco IOS和Cisco IOS XE 安全漏洞

Cisco IOS and Cisco IOS XE are both products of Cisco, Inc.Cisco IOS is a suite of operating systems developed for its network devices.Cisco IOS XE is a single operating system. Used as a single operating system for enterprise wired and wireless access, aggregation, core, and WAN, Cisco IOS XE...

Vulnerability of Cisco IOS and IOS XE operating system web interfaces, allowing attackers to perform CSRF attacks

The vulnerability of Cisco IOS and IOS XE web interfaces is related to deficiencies in authentication procedures. Exploiting this vulnerability allows a malicious actor to perform a CSRF attack by sending a specially crafted HTTP GET request remotely...

The vulnerability affects Cisco IOS and Cisco IOS XE operating systems via DHCP options. It allows a malicious actor to trigger a device reboot or cause a service failure.

The vulnerability of Cisco IOS and Cisco IOS XE DHCP-enabled operating systems exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to trigger a device reboot or cause a service failure using a specially crafted DHCPv4 packet...

The vulnerability of DHCP option 82 for Cisco IOS and Cisco IOS XE operating systems allows a attacker to trigger a device reboot or cause a service failure.

The vulnerability of DHCP option 82 for Cisco IOS and Cisco IOS XE operating systems exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to trigger a device reboot or cause a service failure using a specially crafted DHCPv4 packet...

The vulnerability in the web interfaces of Cisco IOS and Cisco IOS XE systems allows a perpetrator to trigger a service failure or a device restart.

The vulnerability of Cisco IOS and Cisco IOS XE web interfaces is related to improper management of resources in the HTTP server code. Exploiting this vulnerability can allow a malicious actor to trigger a device restart or a service failure remotely...

VulnCheck KEV: CVE-2017-12237

A vulnerability in the Internet Key Exchange Version 2 IKEv2 module of Cisco IOS and Cisco IOS XE could allow an unauthenticated, remote attacker to cause high CPU utilization, traceback messages, or a reload of an affected device that leads to a denial of service...

VulnCheck KEV: CVE-2018-0151

A vulnerability in the quality of service QoS subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition or execute arbitrary code with elevated privileges...

VulnCheck KEV: CVE-2018-0171

Cisco IOS and IOS XE Software improperly validates packet data, allowing an unauthenticated, remote attacker to trigger a reload of an affected device, cause a denial-of-service DoS condition, or perform code execution on the affected device...

The vulnerability of the command-line interface (CLI) of Cisco IOS XE SD-WAN microprogramming software allows a attacker to execute arbitrary commands with superuser privileges.

The vulnerability of the command-line interface CLI of Cisco IOS XE SD-WAN software exists because measures to neutralize specific elements have not been taken. Exploiting this vulnerability allows an attacker to execute arbitrary commands with superuser privileges...

The vulnerability in the web interface of the Cisco IOS XE operating system allows a hacker to elevate their privileges to the root level.

The vulnerability in the Cisco IOS XE operating system’s web interface relates to incorrect restrictions on the path name of the restricted access directory. Exploiting this vulnerability allows a malicious actor to elevate their privileges to the root level remotely...

The vulnerability of the enf_broker process in the system for processing incoming packets on Cisco IOS XR allows a hacker to trigger a service failure.

The vulnerability of the enfbroker process in the Cisco IOS XR operating system’s incoming packet processing function is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to cause service failures...

The vulnerability of the Grub loader of Cisco IOS XR operating systems and Network Convergence System 540 Series routers, as well as Cisco 8000 Series routers, allows a hacker to execute arbitrary code.

The vulnerability of the Grub loader in Cisco IOS XR routers from the Network Convergence System 540 Series and Cisco 8000 Series is related to errors in checking the cryptographic signature. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the Simple Network Management Protocol (SNMP) packet processor in Cisco IOS XE operating systems of Cisco Catalyst 9000 Series network devices allows a attacker to trigger a service failure.

The vulnerability of the Simple Network Management Protocol SNMP packet processor in Cisco IOS XE operating systems for Cisco Catalyst 9000 Series network devices is related to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to cause service...

The vulnerability of the DNS split-function in Cisco IOS and Cisco IOS XE operating systems allows a attacker to cause a service failure.

The vulnerability of DNS split-function in Cisco IOS and Cisco IOS XE operating systems is related to insufficient processing of regular expressions. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

The vulnerability of the Cisco IOS XE network devices in the Cisco Catalyst 9000 Series operating system, which stems from insufficient input data validation, allows attackers to trigger service interruptions.

The vulnerability of the Cisco IOS XE network devices in the Cisco Catalyst 9000 series operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to cause service interruptions...

Cisco IOS XE File System Override Access Vulnerability

Cisco IOS and IOS XE are a set of operating systems developed by Cisco for its network devices. A security vulnerability exists in the file system permissions of Cisco IOS XE, which stems from insufficient file system permissions on the affected devices. An attacker could use this vulnerability t...

The vulnerability of the IOx software platform of the Cisco IOS operating system allows a hacker to elevate their privileges, execute arbitrary code, or cause service interruptions.

The vulnerability of the IOx software platform of the Cisco IOS operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to enhance their privileges and execute arbitrary code or cause service failures...

The vulnerability of the Cisco IOS operating system, related to operations beyond the buffer in memory, allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Cisco IOS operating system is related to operations that go beyond the buffer in memory. Exploiting this vulnerability can allow a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...