CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A vulnerability in the General Packet Radio Service GPRS Tunneling Protocol ingress packet handler of Cisco ASR 5500 System Architecture Evolution SAE Gateways could allow an unauthenticated, remote attacker to cause a partial denial of service DoS condition on an affected device. The vulnerabili...

5.3CVSS5.3AI score0.00552EPSS

Exploits0References3

Prion•added 2017/09/07 9:29 p.m.•9 views

Input validation

5CVSS5.3AI score0.00552EPSS

Exploits0References3

Cvelist•added 2017/09/07 9:0 p.m.•13 views

CVE-2017-12217

5.3AI score0.00552EPSS

Exploits0References3

CVE•added 2017/09/07 9:0 p.m.•60 views

CVE-2017-12217

The CVE-2017-12217 issue affects Cisco ASR 5500 System Architecture Evolution (SAE) Gateways , specifically the GPRS Tunneling Protocol (GTP) ingress packet handler . The root cause is improper input validation of GTP headers , enabling an unauthenticated remote attacker to trigger a restart of t...

5.3CVSS5.3AI score0.00552EPSS

Exploits0References3Affected Software1

Cisco•added 2017/09/06 4:0 p.m.•28 views

Cisco ASR 5500 System Architecture Evolution Gateway GPRS Tunneling Protocol Denial of Service Vulnerability

5.8CVSS5.2AI score0.00552EPSS

Exploits0References1

Tenable Nessus•added 2017/07/13 12:0 a.m.•41 views

Cisco ASR StarOS CLI Command Injection Local Privilege Escalation (cisco-sa-20170705-asrcmd)

According to its self-reported version and model number, the remote Cisco ASR device is affected by a privilege escalation vulnerability in StarOS in the Command Line Interface CLI due to improper sanitization of commands passed to the Linux shell. A local attacker can exploit this, via specially...

8.2CVSS7.8AI score0.00238EPSS

Exploits0References4

OSV•added 2017/03/15 8:59 p.m.•2 views

CVE-2017-3819

A privilege escalation vulnerability in the Secure Shell SSH subsystem in the StarOS operating system for Cisco ASR 5000 Series, ASR 5500 Series, ASR 5700 Series devices, and Cisco Virtualized Packet Core could allow an authenticated, remote attacker to gain unrestricted, root shell access. The...

8.8CVSS5.8AI score0.00638EPSS

Exploits0References3

Cvelist•added 2017/03/15 8:0 p.m.•12 views

CVE-2017-3819

9.1AI score0.00638EPSS

Exploits0References3

Cisco•added 2017/03/15 4:0 p.m.•29 views

Cisco StarOS SSH Privilege Escalation Vulnerability

8.8CVSS9.1AI score0.00638EPSS

Exploits0References1

NVD•added 2016/11/03 9:59 p.m.•10 views

CVE-2016-6455

A vulnerability in the Slowpath of StarOS for Cisco ASR 5500 Series routers with Data Processing Card 2 DPC2 could allow an unauthenticated, remote attacker to cause a subset of the subscriber sessions to be disconnected, resulting in a partial denial of service DoS condition. This vulnerability...

7.5CVSS7.3AI score0.01243EPSS

Exploits0References3

Prion•added 2016/11/03 9:59 p.m.•9 views

Race condition

5CVSS7.1AI score0.01243EPSS

Exploits0References3Affected Software1

Cvelist•added 2016/11/03 9:0 p.m.•13 views

CVE-2016-6455

7.3AI score0.01243EPSS

Exploits0References3

CVE•added 2016/11/03 9:0 p.m.•38 views

CVE-2016-6455

CVE-2016-6455 concerns the Slowpath in StarOS on Cisco ASR 5500 Series routers with Data Processing Card 2 (DPC2). An unauthenticated, remote attacker can disrupt a subset of subscriber sessions by sending crafted IPv4/IPv6 fragments, causing the sessmgr service to reload and triggering a denial ...

7.5CVSS7.3AI score0.01243EPSS

Exploits0References3Affected Software1

Cisco•added 2016/11/02 4:0 p.m.•35 views

Cisco ASR 5500 Series with DPC2 Cards SESSMGR Denial of Service Vulnerability

5CVSS7.4AI score0.01243EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by