CVE-2026-20118

A vulnerability in the handling of an Egress Packet Network Interface EPNI Aligner interrupt in Cisco IOS XR Software for Cisco Network Convergence System NCS 5500 Series with NC57 line cards and Cisco NCS 5700 Routers and Cisco IOS XR Software for Third Party Software could allow an...

CVE-2025-20340

Cisco IOS XR Software contains an ARP processing vulnerability that can be triggered by an unauthenticated, adjacent attacker sending excessive ARP traffic to the management interface, causing a broadcast storm and DoS. Affected behavior includes degraded device performance, loss of management co...

Cisco IOS XE SD-WAN Software 信息泄露漏洞

Cisco IOS XE SD-WAN Software is a Cisco software for network management software-defined networking applied to the Cisco IOS XE network operating system. An information disclosure vulnerability exists in Cisco IOS XE SD-WAN Software that stems from an improper traffic filtering condition, which...

CVE-2025-20143

A vulnerability in the boot process of Cisco IOS XR Software could allow an authenticated, local attacker with high privileges to bypass the Secure Boot functionality and load unverified software on an affected device. To exploit this vulnerability, the attacker must have root-system privileges o...

Cisco IOS XE Software 安全漏洞

Cisco IOS XE Software is an operating system from Cisco, Inc. Used as a single operating system for enterprise wired and wireless access, aggregation, core, and WAN, Cisco IOS XE reduces business and network complexity. A security vulnerability exists in Cisco IOS XE Software that stems from...

Cisco IOS XE Software 安全漏洞

Cisco IOS XE Software is an operating system from Cisco, Inc. Used as a single operating system for enterprise wired and wireless access, aggregation, core, and WAN, Cisco IOS XE reduces business and network complexity. A security vulnerability exists in Cisco IOS XE Software that originates from...

The vulnerability of the HTTP-based client profiling function in Cisco IOS XE allows a hacker to trigger a service failure.

The vulnerability of the HTTP-based client profiling function in Cisco IOS XE exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

VulnCheck KEV: CVE-2017-12231

A vulnerability in the implementation of Network Address Translation NAT functionality in Cisco IOS could allow an unauthenticated, remote attacker to cause a denial of service...

The vulnerability of the vDaemon process in Cisco IOS XE SD-WAN microprogramming software allows a attacker to trigger a service failure.

The vulnerability of the vDaemon microprogramming software for Cisco IOS XE SD-WAN exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures by sending specially crafted traffic to the vulnerable device...

Cisco IOS XE Software 路径遍历漏洞

Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. A command injection vulnerability exists in the web UI of Cisco IOS XE. The vulnerability stems from insufficient input validation. An attacker can exploit this vulnerability by...

CVE-2020-3422

A vulnerability in the IP Service Level Agreement SLA responder feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the IP SLA responder to reuse an existing port, resulting in a denial of service DoS condition. The vulnerability exists because the IP SLA...

The vulnerability in the web-server software of Cisco Enterprise NFV Infrastructure Software (NFVIS) allows a attacker to reveal the names of files located in the vulnerable system.

The vulnerability of Cisco Enterprise NFV Infrastructure Software’s web server software relates to the leakage of file and directory information. Exploiting this vulnerability can allow a malicious actor to disclose the names of files located in the vulnerable system using a specially crafted que...

CVE-2018-15368

A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to gain access to the underlying Linux shell of an affected device and execute arbitrary commands with root privileges on the device. The vulnerability is due to the affected software improperl...