386 matches found
PT-2025-5718 · Cisco · Cisco Ios Xe +1
Name of the Vulnerable Software and Affected Versions: Cisco IOS Software and Cisco IOS XE Software affected versions not specified Description: A vulnerability in the SNMP subsystem could allow an authenticated, remote attacker to cause a DoS condition on an affected device. This is due to...
PT-2025-5716 · Cisco · Cisco Ios Xe +2
Name of the Vulnerable Software and Affected Versions: Cisco IOS Software versions prior to the fixed version Cisco IOS XE Software versions prior to the fixed version Cisco IOS XR Software affected versions not specified Description: A vulnerability in the SNMP subsystem could allow an...
Cisco IOS Software and IOS XE Software Access Control Error Vulnerability
Cisco IOS and IOS XE are a set of operating systems developed by Cisco for its network devices. An access control error vulnerability exists in the Simple Network Management Protocol SNMP IPv4 access control list feature of Cisco IOS Software and IOS XE Software, which stems from the program not...
CVE-2024-20414
A vulnerability in the web UI feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack on an affected system through the web UI. This vulnerability is due to incorrectly accepting configuration...
CVE-2024-20465
A vulnerability in the access control list ACL programming of Cisco IOS Software running on Cisco Industrial Ethernet 4000, 4010, and 5000 Series Switches could allow an unauthenticated, remote attacker to bypass a configured ACL. This vulnerability is due to the incorrect handling of IPv4 ACLs o...
CVE-2024-20465
A vulnerability in the access control list ACL programming of Cisco IOS Software running on Cisco Industrial Ethernet 4000, 4010, and 5000 Series Switches could allow an unauthenticated, remote attacker to bypass a configured ACL. This vulnerability is due to the incorrect handling of IPv4 ACLs o...
Cisco IOS Software Internet Key Exchange Version 1 Fragmentation DoS (cisco-sa-ikev1-NO2ccFWz)
According to its self-reported version, Cisco IOS is affected by multiple vulnerabilities. - A vulnerability in the IKEv1 fragmentation code of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a heap overflow, resulting in an affected device...
Cisco IOS Software for Catalyst 6000 Series Switches DoS (cisco-sa-ios-dos-Hq4d3tZG)
According to its self-reported version, Cisco IOS is affected by a vulnerability. - A vulnerability in Cisco IOS Software for Cisco Catalyst 6000 Series Switches could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpectedly. This vulnerability is due to...
CVE-2024-20312
A vulnerability in the Intermediate System-to-Intermediate System IS-IS protocol of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to insufficient input...
CVE-2024-20276
A vulnerability in Cisco IOS Software for Cisco Catalyst 6000 Series Switches could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpectedly. This vulnerability is due to improper handling of process-switched traffic. An attacker could exploit this...
CVE-2024-20276
CVE-2024-20276 describes a DoS vulnerability in Cisco IOS Software for Cisco Catalyst 6000 Series Switches. The issue stems from improper handling of process-switched traffic, which could allow an unauthenticated, adjacent attacker to send crafted traffic and cause the affected device to reload, ...
PT-2024-2593 · Cisco · Cisco Ios
Name of the Vulnerable Software and Affected Versions: Cisco IOS Software for Cisco Catalyst 6000 Series Switches affected versions not specified Description: A vulnerability in Cisco IOS Software could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpectedly...
Rockwell Automation Stratix 5900 Improper Input Validation (CVE-2014-2109)
A vulnerability in the TCP Input module of Cisco IOS Software could allow an unauthenticated, remote attacker to cause a memory leak or a reload of the affected device which could lead to a denial of service DoS condition. The vulnerability is due to the way certain sequences of TCP packets are...
Rockwell Automation Stratix Cisco IOS Software RSVP Denial of Service (CVE-2014-3354)
A vulnerability in the implementation of the Resource Reservation Protocol RSVP in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker cause the device to reload. This vulnerability could be exploited repeatedly to cause an extended denial of service DoS...
Rockwell Automation Stratix Cisco IOS Software Crafted IPv6 Packet Denial of Service (CVE-2014-2113)
A vulnerability in the implementation of the IP version 6 IPv6 protocol stack in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause I/O memory depletion on an affected device that has IPv6 enabled. The vulnerability is triggered when an affected...
Rockwell Automation Stratix Cisco IOS Software Network Address Translation Denial of Service (CVE-2014-3361)
A vulnerability in the Network Address Translation NAT feature of Cisco IOS Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to improper translation of IP version 4 IPv4 packets. This plugin only...
Rockwell Automation Stratix Multiple Vulnerabilities in Cisco IOS Software Metadata (CVE-2014-3355)
Two vulnerabilities in the metadata flow feature of Cisco IOS Software could allow an unauthenticated, remote attacker to reload a vulnerable device. The vulnerabilities are due to improper handling of transit RSVP packets that need to be processed by the metadata infrastructure. An attacker coul...
Rockwell Automation Stratix 5900 Improper Input Validation (CVE-2014-2111)
A vulnerability in the Application Layer Gateway ALG module of Cisco IOS Software could allow an unauthenticated, remote attacker to cause a reload of the affected device which could lead to a denial of service DoS condition. The vulnerability is due to the way certain malformed DNS packets are...
Rockwell Automation Stratix Cisco IOS Software IPsec Denial of Service (CVE-2014-3299)
A vulnerability in IPsec processing of Cisco IOS Software could allow an authenticated, remote attacker to cause a reload of the affected device. The vulnerability is due to improper processing of malformed IPsec packets. An attacker could exploit this vulnerability by sending malformed IPsec...
Cisco Releases Urgent Patch to Fix Critical Flaw in Emergency Responder Systems
Cisco has released updates to address a critical security flaw impacting Emergency Responder that allows unauthenticated, remote attackers to sign into susceptible systems using hard-coded credentials. The vulnerability, tracked as CVE-2023-20101 CVSS score: 9.8, is due to the presence of static...