Lucene search
K

386 matches found

Positive Technologies
Positive Technologies
added 2025/02/05 12:0 a.m.5 views

PT-2025-5718 · Cisco · Cisco Ios Xe +1

Name of the Vulnerable Software and Affected Versions: Cisco IOS Software and Cisco IOS XE Software affected versions not specified Description: A vulnerability in the SNMP subsystem could allow an authenticated, remote attacker to cause a DoS condition on an affected device. This is due to...

7.7CVSS6.1AI score0.00736EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/02/05 12:0 a.m.5 views

PT-2025-5716 · Cisco · Cisco Ios Xe +2

Name of the Vulnerable Software and Affected Versions: Cisco IOS Software versions prior to the fixed version Cisco IOS XE Software versions prior to the fixed version Cisco IOS XR Software affected versions not specified Description: A vulnerability in the SNMP subsystem could allow an...

7.7CVSS6.6AI score0.00755EPSS
Exploits0References8
CNVD
CNVD
added 2025/01/03 12:0 a.m.11 views

Cisco IOS Software and IOS XE Software Access Control Error Vulnerability

Cisco IOS and IOS XE are a set of operating systems developed by Cisco for its network devices. An access control error vulnerability exists in the Simple Network Management Protocol SNMP IPv4 access control list feature of Cisco IOS Software and IOS XE Software, which stems from the program not...

5.3CVSS6.6AI score0.00511EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/25 4:29 p.m.21 views

CVE-2024-20414

A vulnerability in the web UI feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack on an affected system through the web UI. This vulnerability is due to incorrectly accepting configuration...

6.5CVSS7AI score0.00275EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/25 4:29 p.m.14 views

CVE-2024-20465

A vulnerability in the access control list ACL programming of Cisco IOS Software running on Cisco Industrial Ethernet 4000, 4010, and 5000 Series Switches could allow an unauthenticated, remote attacker to bypass a configured ACL. This vulnerability is due to the incorrect handling of IPv4 ACLs o...

5.8CVSS7.1AI score0.00416EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/25 4:29 p.m.20 views

CVE-2024-20465

A vulnerability in the access control list ACL programming of Cisco IOS Software running on Cisco Industrial Ethernet 4000, 4010, and 5000 Series Switches could allow an unauthenticated, remote attacker to bypass a configured ACL. This vulnerability is due to the incorrect handling of IPv4 ACLs o...

5.8CVSS0.00416EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/05/30 12:0 a.m.20 views

Cisco IOS Software Internet Key Exchange Version 1 Fragmentation DoS (cisco-sa-ikev1-NO2ccFWz)

According to its self-reported version, Cisco IOS is affected by multiple vulnerabilities. - A vulnerability in the IKEv1 fragmentation code of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a heap overflow, resulting in an affected device...

8.6CVSS5.7AI score0.00803EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/04/03 12:0 a.m.19 views

Cisco IOS Software for Catalyst 6000 Series Switches DoS (cisco-sa-ios-dos-Hq4d3tZG)

According to its self-reported version, Cisco IOS is affected by a vulnerability. - A vulnerability in Cisco IOS Software for Cisco Catalyst 6000 Series Switches could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpectedly. This vulnerability is due to...

7.4CVSS5.5AI score0.00291EPSS
Exploits0References4
OSV
OSV
added 2024/03/27 5:15 p.m.2 views

CVE-2024-20312

A vulnerability in the Intermediate System-to-Intermediate System IS-IS protocol of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to insufficient input...

7.4CVSS5.8AI score0.00258EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/27 4:51 p.m.29 views

CVE-2024-20276

A vulnerability in Cisco IOS Software for Cisco Catalyst 6000 Series Switches could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpectedly. This vulnerability is due to improper handling of process-switched traffic. An attacker could exploit this...

7.4CVSS7.5AI score0.00291EPSS
Exploits0References1
CVE
CVE
added 2024/03/27 4:51 p.m.76 views

CVE-2024-20276

CVE-2024-20276 describes a DoS vulnerability in Cisco IOS Software for Cisco Catalyst 6000 Series Switches. The issue stems from improper handling of process-switched traffic, which could allow an unauthenticated, adjacent attacker to send crafted traffic and cause the affected device to reload, ...

7.4CVSS6.8AI score0.00291EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/03/27 12:0 a.m.7 views

PT-2024-2593 · Cisco · Cisco Ios

Name of the Vulnerable Software and Affected Versions: Cisco IOS Software for Cisco Catalyst 6000 Series Switches affected versions not specified Description: A vulnerability in Cisco IOS Software could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpectedly...

7.4CVSS6.2AI score0.00291EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.21 views

Rockwell Automation Stratix 5900 Improper Input Validation (CVE-2014-2109)

A vulnerability in the TCP Input module of Cisco IOS Software could allow an unauthenticated, remote attacker to cause a memory leak or a reload of the affected device which could lead to a denial of service DoS condition. The vulnerability is due to the way certain sequences of TCP packets are...

7.8CVSS7.2AI score0.02237EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.14 views

Rockwell Automation Stratix Cisco IOS Software RSVP Denial of Service (CVE-2014-3354)

A vulnerability in the implementation of the Resource Reservation Protocol RSVP in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker cause the device to reload. This vulnerability could be exploited repeatedly to cause an extended denial of service DoS...

7.8CVSS7.2AI score0.03023EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.13 views

Rockwell Automation Stratix Cisco IOS Software Crafted IPv6 Packet Denial of Service (CVE-2014-2113)

A vulnerability in the implementation of the IP version 6 IPv6 protocol stack in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause I/O memory depletion on an affected device that has IPv6 enabled. The vulnerability is triggered when an affected...

7.8CVSS7.3AI score0.01986EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.17 views

Rockwell Automation Stratix Cisco IOS Software Network Address Translation Denial of Service (CVE-2014-3361)

A vulnerability in the Network Address Translation NAT feature of Cisco IOS Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to improper translation of IP version 4 IPv4 packets. This plugin only...

7.1CVSS7.3AI score0.02365EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.20 views

Rockwell Automation Stratix Multiple Vulnerabilities in Cisco IOS Software Metadata (CVE-2014-3355)

Two vulnerabilities in the metadata flow feature of Cisco IOS Software could allow an unauthenticated, remote attacker to reload a vulnerable device. The vulnerabilities are due to improper handling of transit RSVP packets that need to be processed by the metadata infrastructure. An attacker coul...

7.8CVSS7.2AI score0.02778EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.26 views

Rockwell Automation Stratix 5900 Improper Input Validation (CVE-2014-2111)

A vulnerability in the Application Layer Gateway ALG module of Cisco IOS Software could allow an unauthenticated, remote attacker to cause a reload of the affected device which could lead to a denial of service DoS condition. The vulnerability is due to the way certain malformed DNS packets are...

7.1CVSS7.2AI score0.01683EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.14 views

Rockwell Automation Stratix Cisco IOS Software IPsec Denial of Service (CVE-2014-3299)

A vulnerability in IPsec processing of Cisco IOS Software could allow an authenticated, remote attacker to cause a reload of the affected device. The vulnerability is due to improper processing of malformed IPsec packets. An attacker could exploit this vulnerability by sending malformed IPsec...

6.8CVSS7.2AI score0.03135EPSS
Exploits0References4
The Hacker News
The Hacker News
added 2023/10/05 12:2 p.m.67 views

Cisco Releases Urgent Patch to Fix Critical Flaw in Emergency Responder Systems

Cisco has released updates to address a critical security flaw impacting Emergency Responder that allows unauthenticated, remote attackers to sign into susceptible systems using hard-coded credentials. The vulnerability, tracked as CVE-2023-20101 CVSS score: 9.8, is due to the presence of static...

8.1AI score0.02447EPSS
Exploits0
Rows per page
Query Builder