188 matches found
CVE-2022-20692
A vulnerability in the NETCONF over SSH feature of Cisco IOS XE Software could allow a low-privileged, authenticated, remote attacker to cause a denial of service condition DoS on an affected device. This vulnerability is due to insufficient resource management. An attacker could exploit this...
Race condition
A vulnerability in the NETCONF process of Cisco SD-WAN vEdge Routers could allow an authenticated, local attacker to cause an affected device to run out of memory, resulting in a denial of service DoS condition. This vulnerability is due to insufficient memory management when an affected device...
CVE-2022-20692 Cisco IOS XE Software NETCONF Over SSH Denial of Service Vulnerability
A vulnerability in the NETCONF over SSH feature of Cisco IOS XE Software could allow a low-privileged, authenticated, remote attacker to cause a denial of service condition DoS on an affected device. This vulnerability is due to insufficient resource management. An attacker could exploit this...
CVE-2022-20692
Cisco IOS XE Software NETCONF Over SSH contains a denial-of-service vulnerability (CVE-2022-20692) due to insufficient resource management. A low-privileged, authenticated attacker can exhaust resources by initiating a large number of NETCONF over SSH connections, potentially causing device reloa...
CVE-2022-20692 Cisco IOS XE Software NETCONF Over SSH Denial of Service Vulnerability
A vulnerability in the NETCONF over SSH feature of Cisco IOS XE Software could allow a low-privileged, authenticated, remote attacker to cause a denial of service condition DoS on an affected device. This vulnerability is due to insufficient resource management. An attacker could exploit this...
CVE-2022-20717 Cisco SD-WAN vEdge Routers Denial of Service Vulnerability
A vulnerability in the NETCONF process of Cisco SD-WAN vEdge Routers could allow an authenticated, local attacker to cause an affected device to run out of memory, resulting in a denial of service DoS condition. This vulnerability is due to insufficient memory management when an affected device...
CVE-2022-20717 Cisco SD-WAN vEdge Routers Denial of Service Vulnerability
A vulnerability in the NETCONF process of Cisco SD-WAN vEdge Routers could allow an authenticated, local attacker to cause an affected device to run out of memory, resulting in a denial of service DoS condition. This vulnerability is due to insufficient memory management when an affected device...
CVE-2022-20717
Cisco SD-WAN vEdge Routers are affected by CVE-2022-20717 due to a NETCONF handling memory-management flaw that can allow an authenticated, local attacker to trigger memory exhaustion and cause a DoS by sending large volumes of traffic. The impact is device crash/DoS as described in multiple sour...
Cisco IOS XE NETCONF Over SSH Denial of Service Vulnerability
Cisco IOS XE is a set of operating systems developed by Cisco for its network devices.A denial of service vulnerability exists in Cisco IOS XE NETCONF Over SSH, which can be exploited by attackers to cause a denial of service...
CVE-2022-20692
A vulnerability in the NETCONF over SSH feature of Cisco IOS XE Software could allow a low-privileged, authenticated, remote attacker to cause a denial of service condition DoS on an affected device. This vulnerability is due to insufficient resource management. An attacker could exploit this...
Cisco SD-WAN vEdge Routers Denial of Service Vulnerability
A vulnerability in the NETCONF process of Cisco SD-WAN vEdge Routers could allow an authenticated, local attacker to cause an affected device to run out of memory, resulting in a denial of service DoS condition. This vulnerability is due to insufficient memory management when an affected device...
CVE-2022-20717
A vulnerability in the NETCONF process of Cisco SD-WAN vEdge Routers could allow an authenticated, local attacker to cause an affected device to run out of memory, resulting in a denial of service DoS condition. This vulnerability is due to insufficient memory management when an affected device...
Cisco IOS XE Software NETCONF Over SSH Denial of Service Vulnerability
A vulnerability in the NETCONF over SSH feature of Cisco IOS XE Software could allow a low-privileged, authenticated, remote attacker to cause a denial of service condition DoS on an affected device. This vulnerability is due to insufficient resource management. An attacker could exploit this...
Cisco SD-WAN vEdge Routers DoS (cisco-sa-sdwan-vedge-dos-jerVm4bB)
According to its self-reported version, Cisco SD-WAN Viptela Software is affected by a vulnerability. - A vulnerability in the NETCONF process of Cisco SD-WAN vEdge Routers could allow an authenticated, local attacker to cause an affected device to run out of memory, resulting in a denial of...
PT-2022-2303 · Cisco · Cisco Sd-Wan Vedge Routers
Name of the Vulnerable Software and Affected Versions: Cisco SD-WAN vEdge Routers affected versions not specified Description: The issue is related to insufficient memory management in the NETCONF process of Cisco SD-WAN vEdge Routers, which can lead to an uncontrolled memory consumption. An...
CVE-2021-31352
An Information Exposure vulnerability in Juniper Networks SRC Series devices configured for NETCONF over SSH permits the negotiation of weak ciphers, which could allow a remote attacker to obtain sensitive information. A remote attacker with read and write access to network data could exploit thi...
Information disclosure
An Information Exposure vulnerability in Juniper Networks SRC Series devices configured for NETCONF over SSH permits the negotiation of weak ciphers, which could allow a remote attacker to obtain sensitive information. A remote attacker with read and write access to network data could exploit thi...
CVE-2021-31352 SRC Series: NETCONF over SSH allows negotiation of weak ciphers
An Information Exposure vulnerability in Juniper Networks SRC Series devices configured for NETCONF over SSH permits the negotiation of weak ciphers, which could allow a remote attacker to obtain sensitive information. A remote attacker with read and write access to network data could exploit thi...
CVE-2021-31352
The CVE describes an Information Exposure in Juniper Networks SRC Series devices when configured for NETCONF over SSH, caused by negotiation of weak ciphers. The vulnerability could allow a remote attacker with read/write access to network data to display plaintext bits from a ciphertext block an...
Cisco IOS XE Software NETCONF RESTCONF Authentication Bypass (cisco-sa-aaa-Yx47ZT8Q)
According to its self-reported version, Cisco IOS XE Software's authentication, authorization, and accounting AAA function is affected by a authentication bypass vulnerability. Therefore, it could allow an unauthenticated, remote attacker to bypass NETCONF or RESTCONF authentication and do any of...