EUVD-2024-17993

Malicious code in bioql PyPI...

The vulnerability in the implementation of the NETCONF protocol for Cisco IOS XE allows a attacker to elevate their privileges to the root level.

The vulnerability of the NETCONF protocol implementation in Cisco IOS XE operating systems is related to the use of an incomplete blacklist when processing input data. Exploiting this vulnerability allows a malicious actor to elevate their privileges to the root level...

CVE-2024-20278

A vulnerability in the NETCONF feature of Cisco IOS XE Software could allow an authenticated, remote attacker to elevate privileges to root on an affected device. This vulnerability is due to improper validation of user-supplied input. An attacker could exploit this vulnerability by sending craft...

PT-2024-2707 · Cisco · Cisco Ios Xe

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software affected versions not specified Description: The issue is related to the NETCONF feature of Cisco IOS XE Software, where improper validation of user-supplied input could allow an authenticated, remote attacker to elevate...

The vulnerability of the NETCONF protocol implementation in Cisco SD-WAN software allows a attacker to cause service failure.

The vulnerability of the NETCONF protocol implementation in Cisco SD-WAN networks is related to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...