Lucene search
K

2417 matches found

Positive Technologies
Positive Technologies
added 2016/08/15 12:0 a.m.3 views

PT-2016-2534 · Cisco · Cisco Asa +8

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA Software versions through 9.4.2.3 Description: The issue is caused by a buffer overflow in the Simple Network Management Protocol SNMP code, allowing remote authenticated users to execute arbitrary code v...

8.8CVSS9.7AI score0.87503EPSS
Exploits7References17
VulnCheck KEV
VulnCheck KEV
added 2016/08/15 12:0 a.m.5 views

VulnCheck KEV: CVE-2016-6366

A buffer overflow vulnerability in the Simple Network Management Protocol SNMP code of Cisco ASA software could allow an attacker to cause a reload of the affected system or to remotely execute code...

8.8CVSS7.8AI score0.87503EPSS
Exploits7References1
OpenVAS
OpenVAS
added 2016/07/18 12:0 a.m.27 views

Cisco IOS Software Border Gateway Protocol Message Processing Denial of Service Vulnerability (cisco-sa-20160715-bgp)

A vulnerability in Border Gateway Protocol BGP message processing functions of Cisco IOS Software could allow an authenticated, remote attacker to cause an affected device to reload. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and...

5.3CVSS5.7AI score0.01355EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2016/07/18 12:0 a.m.26 views

Cisco IOS XE Software Border Gateway Protocol Message Processing Denial of Service Vulnerability

A vulnerability in Border Gateway Protocol BGP message processing functions of Cisco IOS XE Software could allow an authenticated, remote attacker to cause an affected device to reload. The vulnerability is due to improper processing of crafted BGP attributes. An attacker could exploit this...

5.3CVSS5.3AI score0.01355EPSS
Exploits0References1
OSV
OSV
added 2016/07/17 10:59 p.m.3 views

CVE-2016-1459

Cisco IOS 12.4 and 15.0 through 15.5 and IOS XE 3.13 through 3.17 allow remote authenticated users to cause a denial of service device reload via crafted attributes in a BGP message, aka Bug ID CSCuz21061...

5.3CVSS5.8AI score0.01355EPSS
Exploits0References3
CNVD
CNVD
added 2016/07/17 12:0 a.m.4 views

Cisco IOS XR for Cisco Network Convergence System Denial of Service Vulnerability

Cisco IOS XR on NCS 6000 is an operating system from Cisco that runs on 6000 series router devices. A denial of service vulnerability exists in Cisco IOS XR versions 5.x through 5.2.5 on NCS 6000 devices, which arises from the program failing to properly manage system timer resources. A remote...

7.8CVSS6.8AI score0.01939EPSS
Exploits0References1
Cisco
Cisco
added 2016/07/15 2:30 p.m.27 views

Cisco IOS and IOS XE Software Border Gateway Protocol Message Processing Denial of Service Vulnerability

A vulnerability in Border Gateway Protocol BGP message processing functions of Cisco IOS and IOS XE Software could allow an authenticated, remote attacker to cause an affected device to reload. The vulnerability is due to improper processing of crafted BGP attributes. An attacker could exploit th...

4.9CVSS5.2AI score0.01355EPSS
Exploits0References1
Cisco
Cisco
added 2016/07/13 4:0 p.m.27 views

Cisco IOS XR for NCS 6000 Packet Timer Leak Denial of Service Vulnerability

A vulnerability in the management of system timer resources in Cisco IOS XR for Cisco Network Convergence System 6000 NCS 6000 Series Routers could allow an unauthenticated, remote attacker to cause a leak of system timer resources, leading to a nonoperational state and an eventual reload of the...

7.8CVSS7.5AI score0.01939EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2016/07/06 12:0 a.m.6 views

The vulnerability of Cisco IPS’ software allows a malicious individual to obtain a one-time code (nonce) for ECDSA encryption.

The vulnerability exists in the implementation of the Montgomery algorithm in OpenSSL, due to the temporal impermanence of the padding operations. Exploiting this vulnerability allows local users to obtain a one-time code nonce for ECDSA by attacking the cache through external channels using the...

1.9CVSS6.7AI score0.00942EPSS
Exploits1References10Affected Software1
Prion
Prion
added 2016/07/03 9:59 p.m.20 views

Buffer overflow

Buffer overflow in the web-based management interface on Cisco RV110W devices with firmware through 1.2.1.4, RV130W devices with firmware through 1.0.2.7, and RV215W devices with firmware through 1.3.0.7 allows remote authenticated users to cause a denial of service device reload via a crafted HT...

6.8CVSS7.1AI score0.0165EPSS
Exploits0References2Affected Software3
OSV
OSV
added 2016/06/19 1:59 a.m.3 views

CVE-2016-1397

Buffer overflow in the web-based management interface on Cisco RV110W devices with firmware before 1.2.1.7, RV130W devices with firmware before 1.0.3.16, and RV215W devices with firmware before 1.3.0.8 allows remote authenticated users to cause a denial of service device reload via crafted...

6.5CVSS5.9AI score0.01776EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2016/06/01 12:0 a.m.25 views

Cisco Wireless LAN Controller Management Interface Denial of Service Vulnerability

A vulnerability in the web-based management interface of Cisco Wireless LAN Controller WLC devices running Cisco AireOS Softwar Copyright C 2016 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.8CVSS7.6AI score0.02082EPSS
Exploits0References1
CNVD
CNVD
added 2016/05/19 12:0 a.m.5 views

Cisco Web Security Appliance AsyncOS Denial of Service Vulnerability

Cisco Web Security Appliance WSA is a set of Web security appliances from the U.S. company Cisco Cisco. The appliance provides SaaS-based access control, real-time network reporting and tracking, and security policy development, etc. Cisco AsyncOS is a set of operating systems running on it. A...

7.8CVSS6.7AI score0.01492EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2016/05/12 12:0 a.m.17 views

Cisco NX-OS Software TACACS+ Command Authorization Vulnerability (Cisco-SA-20150202-CVE-2014-8013)

A vulnerability in the TACACS+ command authorization feature of Cisco NX-OS Software could allow an authenticated, local attacker to cause the system to reset. Copyright C 2016 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

4.9CVSS6.5AI score0.00337EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2016/05/10 12:0 a.m.34 views

Cisco IOS Software RSVP Vulnerability

A vulnerability in the implementation of the Resource Reservation Protocol RSVP in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker cause the device to reload. This vulnerability could be exploited repeatedly to cause an extended denial of service DoS...

7.8CVSS9.4AI score0.03023EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2016/05/10 12:0 a.m.35 views

Cisco IOS XR Software BVI Routed Packet Denial of Service Vulnerability (cisco-sa-20150415-iosxr)

A vulnerability in the packet-processing code of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers ASR could allow an unauthenticated, remote attacker to cause a lockup and eventual reload of a network processor chip and the line card that is processing traffic. Only...

7.8CVSS6.9AI score0.03427EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2016/05/10 12:0 a.m.25 views

Cisco IOS XE Software SNMP Denial of Service Vulnerability

A vulnerability in the SNMP module of Cisco IOS XE Software could allow an authenticated, remote attacker to cause a reload of the affected device. The vulnerability is due to frequent polling of certain MIBs on an affected device. An attacker could exploit this vulnerability by sending continuou...

6.8CVSS6.8AI score0.01498EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2016/05/09 12:0 a.m.25 views

Cisco IOS and IOS XE Software DHCPv6 Relay Denial of Service Vulnerability

A vulnerability in the DHCP version 6 DHCPv6 relay feature of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to insufficient validation of DHCPv6 relay messages. An attacker could exploit this...

7.8CVSS7.7AI score0.01948EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2016/05/09 12:0 a.m.27 views

Cisco IOS and IOS XE Software IPv6 First Hop Security Denial of Service Vulnerabilities

Two vulnerabilities in the IPv6 first hop security feature of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. Cisco has released software updates that address these vulnerabilities. There are no workarounds to mitigate these...

7.8CVSS6.9AI score0.03219EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2016/05/06 12:0 a.m.20 views

Cisco IOS Software Intrusion Prevention System Denial of Service Vulnerability (cisco-sa-20120926-ios-ips)

Cisco IOS Software contains a vulnerability in the Intrusion Prevention System IPS feature that could allow an unauthenticated, remote attacker to cause a reload of an affected device if specific Cisco IOS IPS configurations exist. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions...

7.1CVSS5.5AI score0.01548EPSS
Exploits0References1
Rows per page
Query Builder