Lucene search
K

30 matches found

CNNVD
CNNVD
added 2026/03/25 12:0 a.m.10 views

Cisco IOS和Cisco IOS XE Software 安全漏洞

Cisco IOS and Cisco IOS XE Software are products of the American company Cisco. Cisco IOS is an operating system developed for its network devices. Cisco IOS XE Software is a network operating system. There are security vulnerabilities in Cisco IOS and Cisco IOS XE Software Release 3E. These...

7.7CVSS5.8AI score0.0028EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/11 4:31 p.m.27 views

CVE-2026-20046 Cisco IOS XR Software CLI Privilege Escalation Vulnerability

A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local attacker to elevate privileges and gain full administrative control of an affected device. This vulnerability is due to incorrect mapping of a command to task groups...

8.8CVSS0.00135EPSS
Exploits0References1
CNVD
CNVD
added 2025/09/28 12:0 a.m.2 views

Cisco IOS XE Software Cross-Site Scripting Vulnerability

Cisco IOS XE Software is a network operating system from the American company Cisco Cisco. A cross-site scripting vulnerability exists in Cisco IOS XE Software that originates from improper user input cleanup and can be exploited by an attacker to cause a reflective cross-site scripting attack...

6.1CVSS5.7AI score0.00272EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/04 12:0 a.m.9 views

PT-2024-18658 · Cisco · Nexus 9000 +5

Name of the Vulnerable Software and Affected Versions: Cisco NX-OS Software affected versions not specified Description: A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacke...

5.2CVSS6.7AI score0.00304EPSS
Exploits0References16
OSV
OSV
added 2023/09/27 6:15 p.m.2 views

CVE-2023-20187

A vulnerability in the Multicast Leaf Recycle Elimination mLRE feature of Cisco IOS XE Software for Cisco ASR 1000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to cause the affected device to reload, resulting in a denial of service DoS condition. This...

7.5CVSS5.8AI score0.00652EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/08/23 12:0 a.m.3 views

PT-2023-4731 · Cisco · Cisco Nx-Os +1

Name of the Vulnerable Software and Affected Versions: Cisco NX-OS Software affected versions not specified Description: A vulnerability in TACACS+ and RADIUS remote authentication for Cisco NX-OS Software could allow an unauthenticated, local attacker to cause an affected device to unexpectedly...

7.1CVSS6.6AI score0.00207EPSS
Exploits0References5
CNNVD
CNNVD
added 2022/04/13 12:0 a.m.7 views

Cisco IOS XE Software缓冲区错误漏洞

Cisco IOS XE is a set of operating systems developed by Cisco for its network devices.A denial of service vulnerability exists in Cisco IOS XE AVC-FNF, which originates from packets that do not adequately validate traffic inspected by the AVC function and can be exploited by attackers to cause a...

8.6CVSS6.6AI score0.01437EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/04/13 12:0 a.m.4 views

Cisco IOS XE Software输入验证错误漏洞

Cisco IOS XE is a set of operating systems developed by Cisco for its network devices.Cisco IOS XE has an elevation of privilege vulnerability that can be exploited by attackers to execute arbitrary commands as root...

7.2CVSS6.6AI score0.00272EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/09/22 12:0 a.m.6 views

Cisco多款产品 缓冲区错误漏洞

Cisco IOS XE and Cisco Catalyst 9000 are both products of Cisco, Inc.Cisco IOS XE is an operating system. A single operating system for enterprise wired and wireless access, aggregation, core, and WAN, Cisco IOS XE reduces business and network complexity. The Cisco Catalyst 9000 is a switch. A...

10CVSS7.8AI score0.0287EPSS
Exploits0References6
CNVD
CNVD
added 2020/09/25 12:0 a.m.4 views

Cisco IOS XE Consent Token Bypass Vulnerability (CNVD-2020-57581)

Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. A consent token bypass vulnerability exists in the persistent Telnet/Secure Shell SSH CLI of Cisco IOS XE. The vulnerability stems from insufficient enforcement of consent tokens ...

7.8CVSS7.4AI score0.00317EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2020/09/03 12:0 a.m.6 views

The vulnerability of the Cisco NX-OS network operating system in Cisco devices allows a attacker to trigger a service failure.

The vulnerability of the Cisco NX-OS network operating system in Cisco Fabric Services components is related to the assignment of the zero pointer. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

8.6CVSS7.5AI score0.01371EPSS
Exploits0References3Affected Software2
The Hacker News
The Hacker News
added 2020/09/01 7:39 a.m.7 views

Cisco Issues Warning Over IOS XR Zero-Day Flaw Being Targeted in the Wild

Cisco has warned of an active zero-day vulnerability in its router software that's being exploited in the wild and could allow a remote, authenticated attacker to carry out memory exhaustion attacks on an affected device. "An attacker could exploit these vulnerabilities by sending crafted IGMP...

8.6CVSS7.2AI score0.03631EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2020/04/06 12:0 a.m.4 views

A vulnerability in the anycast function of the Cisco NX-OS operating system, which allows a attacker to compromise the integrity of protected information.

The vulnerability in the anycast function of the Cisco NX-OS operating system is related to insufficient verification of data authenticity. Exploiting this vulnerability can allow a malicious actor to compromise the integrity of protected information...

4.7CVSS5.5AI score0.00274EPSS
Exploits0References4
OSV
OSV
added 2020/02/26 5:15 p.m.3 views

CVE-2020-3170

A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause an NX-API system process to unexpectedly restart. The vulnerability is due to incorrect validation of the HTTP header of a request that is sent to the NX-API. An attacker could...

5.3CVSS6.1AI score0.01449EPSS
Exploits0References1
OSV
OSV
added 2020/02/26 5:15 p.m.6 views

CVE-2020-3165

A vulnerability in the implementation of Border Gateway Protocol BGP Message Digest 5 MD5 authentication in Cisco NX-OS Software could allow an unauthenticated, remote attacker to bypass MD5 authentication and establish a BGP connection with the device. The vulnerability occurs because the BGP MD...

8.2CVSS7.2AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/11/11 12:0 a.m.5 views

The vulnerability of the Neighbor Discovery protocol implementation in Cisco IOS XE, IOS XR, NX-OS, and StarOS operating systems allows a attacker to cause service failure.

The vulnerability of the Neighbor Discovery ND protocol implementation in Cisco IOS XE, IOS XR, NX-OS, and StarOS operating systems exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures by using specially crafted N...

5.8CVSS7.2AI score0.03823EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2019/08/28 7:15 p.m.3 views

CVE-2019-1962

A vulnerability in the Cisco Fabric Services component of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause process crashes, which can result in a denial of service DoS condition on an affected system. The vulnerability is due to insufficient validation of TCP packets...

7.5CVSS7.1AI score0.01928EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/06/26 12:0 a.m.4 views

The vulnerability of the command-line interface of the Cisco NX-OS network operating system allows a attacker to execute arbitrary code with root privileges.

The vulnerability of the command-line interface CLI of the Cisco NX-OS network operating system is related to insufficient validation of input data. Exploiting this vulnerability could allow a attacker to execute arbitrary code with root privileges on the Linux base operating system...

6.8CVSS6AI score0.00463EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2019/06/21 12:0 a.m.4 views

The vulnerability of the NX-OS network operating system, related to incorrect verification of the cryptographic signature, allows a hacker to install malicious software on a vulnerable device.

The vulnerability of the NX-OS network operating system is related to incorrect verification of the cryptographic signature. Exploiting this vulnerability could allow a hacker to install malicious software on a vulnerable device...

6.7CVSS5.5AI score0.00181EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2019/05/16 12:0 a.m.1 views

Cisco NX-OS Software and Cisco FXOS Software Command Injection Vulnerabilities

Cisco Firepower 4100 Series and others are products of Cisco Corporation.Cisco Firepower 4100 Series is a 4100 series firewall appliance.Cisco FXOS Software is a set of firewall software running in Cisco security appliances.Cisco Nexus 3000 Series Switches is a 3000 series switch.Cisco MDS 9000...

7.2CVSS7.7AI score0.00446EPSS
Exploits0References1
Rows per page
Query Builder