Lucene search
K

386 matches found

CVE
CVE
added 2025/09/24 5:14 p.m.30 views

CVE-2025-20149

CVE-2025-20149 affects Cisco IOS and IOS XE CLI, where a buffer overflow in the CLI could be triggered by crafted commands from a low-privileged, authenticated user to cause an unexpected device reload (DoS). The vulnerability is local-attack accessible (LOCAL), with LOW privileges required and n...

6.5CVSS6.5AI score0.00113EPSS
Exploits0References1
CVE
CVE
added 2025/09/24 5:11 p.m.21 views

CVE-2025-20327

CVE-2025-20327 : Cisco IOS Software web UI vulnerability caused by improper input validation. An authenticated, low-privilege attacker can craft a URL in an HTTP request to trigger a reload and DoS. The issue affects the Cisco IOS/Web UI and has a CVSS:3.1 base score of 7.7 (Network, Low Privileg...

7.7CVSS6.3AI score0.00354EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/24 5:10 p.m.12 views

CVE-2025-20352

A vulnerability in the Simple Network Management Protocol SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow the following: An authenticated, remote attacker with low privileges could cause a denial of service DoS condition on an affected device that is running Cisco IOS...

7.7CVSS0.37613EPSS
Exploits1References1
Cisco
Cisco
added 2025/09/24 4:0 p.m.12 views

Cisco IOS Software Industrial Ethernet Switch Device Manager Denial of Service Vulnerability

A vulnerability in the web UI of Cisco IOS Software could allow an authenticated, remote attacker with low privileges to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper input validation. An attacker could exploit this vulnerability by sending a...

7.7CVSS6.8AI score0.00354EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/08/14 12:0 a.m.7 views

PT-2025-33327

Name of the Vulnerable Software and Affected Versions: Cisco IOS Software affected versions not specified Cisco IOS XE Software affected versions not specified Cisco Secure Firewall Adaptive Security Appliance ASA Software affected versions not specified Cisco Secure Firewall Threat Defense FTD...

8.6CVSS6.4AI score0.00545EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/07/21 12:0 a.m.5 views

PT-2025-30323 · Ibm · Ibm Cognos Analytics Mobile

Name of the Vulnerable Software and Affected Versions: IBM Cognos Analytics Mobile iOS versions 1.1.0 through 1.1.22 Description: IBM Cognos Analytics Mobile iOS may expose information due to the use of unencrypted network traffic. Recommendations: IBM Cognos Analytics Mobile iOS versions prior t...

7.5CVSS6.1AI score0.00224EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/23 10:36 a.m.10 views

CVE-2024-20414

A vulnerability in the web UI feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack on an affected system through the web UI. This vulnerability is due to incorrectly accepting configuration...

6.5CVSS7AI score0.00275EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:35 a.m.7 views

CVE-2024-20465

A vulnerability in the access control list ACL programming of Cisco IOS Software running on Cisco Industrial Ethernet 4000, 4010, and 5000 Series Switches could allow an unauthenticated, remote attacker to bypass a configured ACL. This vulnerability is due to the incorrect handling of IPv4 ACLs o...

5.8CVSS7.1AI score0.00416EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:50 a.m.6 views

CVE-2024-20373

A vulnerability in the implementation of the Simple Network Management Protocol SNMP IPv4 access control list ACL feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to perform SNMP polling of an affected device, even if it is configured to deny...

5.3CVSS7AI score0.00511EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:48 a.m.6 views

CVE-2024-20307

A vulnerability in the IKEv1 fragmentation code of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a heap overflow, resulting in an affected device reloading. This vulnerability exists because crafted, fragmented IKEv1 packets are not properly...

7.5CVSS7.1AI score0.00726EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:43 a.m.5 views

CVE-2023-20186

A vulnerability in the Authentication, Authorization, and Accounting AAA feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to bypass command authorization and copy files to or from the file system of an affected device using the Secure Copy...

9.1CVSS7.2AI score0.00586EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/09 6:8 p.m.10 views

CVE-2025-20181

A vulnerability in Cisco IOS Software for Cisco Catalyst 2960X, 2960XR, 2960CX, and 3560CX Series Switches could allow an authenticated, local attacker with privilege level 15 or an unauthenticated attacker with physical access to the device to execute persistent code at boot time and break the...

6.8CVSS7.7AI score0.00159EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/09 6:8 p.m.11 views

CVE-2025-20151

A vulnerability in the implementation of the Simple Network Management Protocol Version 3 SNMPv3 feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to poll an affected device using SNMP, even if the device is configured to deny SNMP traffic from ...

4.3CVSS6.8AI score0.00328EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/09 6:8 p.m.14 views

CVE-2025-20191

A vulnerability in the Switch Integrated Security Features SISF of Cisco IOS Software, Cisco IOS XE Software, Cisco NX-OS Software, and Cisco Wireless LAN Controller WLC AireOS Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on an affected...

7.4CVSS7AI score0.00199EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/09 6:8 p.m.11 views

CVE-2025-20154

A vulnerability in the Two-Way Active Measurement Protocol TWAMP server feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the affected device to reload, resulting in a denial of service DoS condition. For Cisco IOS XR Software, this...

8.6CVSS7.1AI score0.00442EPSS
Exploits0References1
NVD
NVD
added 2025/05/07 6:15 p.m.9 views

CVE-2025-20196

A vulnerability in the Cisco IOx application hosting environment of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the Cisco IOx application hosting environment to stop responding, resulting in a denial of service DoS condition. This...

5.3CVSS0.00359EPSS
Exploits0References1
NVD
NVD
added 2025/05/07 6:15 p.m.17 views

CVE-2025-20191

A vulnerability in the Switch Integrated Security Features SISF of Cisco IOS Software, Cisco IOS XE Software, Cisco NX-OS Software, and Cisco Wireless LAN Controller WLC AireOS Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on an affected...

7.4CVSS0.00199EPSS
Exploits0References1
NVD
NVD
added 2025/05/07 6:15 p.m.13 views

CVE-2025-20164

A vulnerability in the Cisco Industrial Ethernet Switch Device Manager DM of Cisco IOS Software could allow an authenticated, remote attacker to elevate privileges. This vulnerability is due to insufficient validation of authorizations for authenticated users. An attacker could exploit this...

8.3CVSS0.00294EPSS
Exploits0References1
NVD
NVD
added 2025/05/07 6:15 p.m.16 views

CVE-2025-20181

A vulnerability in Cisco IOS Software for Cisco Catalyst 2960X, 2960XR, 2960CX, and 3560CX Series Switches could allow an authenticated, local attacker with privilege level 15 or an unauthenticated attacker with physical access to the device to execute persistent code at boot time and break the...

6.8CVSS0.00159EPSS
Exploits0References1
NVD
NVD
added 2025/05/07 6:15 p.m.14 views

CVE-2025-20154

A vulnerability in the Two-Way Active Measurement Protocol TWAMP server feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the affected device to reload, resulting in a denial of service DoS condition. For Cisco IOS XR Software, this...

8.6CVSS0.00442EPSS
Exploits0References1
Rows per page
Query Builder