Lucene search
K

35 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-7364

Malware in sbrugna...

10CVSS9.4AI score0.04899EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2021/11/15 12:0 a.m.10 views

The vulnerability of the Access Control List configuration in Cisco IOS XE router operating systems of the ASR 900 and ASR 920 series allows a perpetrator to circumvent security restrictions.

The vulnerability of the Access Control List configuration on Cisco IOS XE routers of the ASR 900 and ASR 920 series involves deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to bypass security restrictions remotely...

5.8CVSS6.2AI score0.00967EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2021/09/23 2:25 a.m.8 views

CVE-2021-34696 Cisco ASR 900 and ASR 920 Series Aggregation Services Routers Access Control List Bypass Vulnerability

A vulnerability in the access control list ACL programming of Cisco ASR 900 and ASR 920 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to bypass a configured ACL. This vulnerability is due to incorrect programming of hardware when an ACL is configured using a...

5.8CVSS7AI score0.00967EPSS
Exploits0References1
CVE
CVE
added 2021/09/23 2:25 a.m.60 views

CVE-2021-34696

The CVE-2021-34696 entry affects Cisco ASR 900 and ASR 920 Series Aggregation Services Routers. The vulnerability originates from incorrect hardware programming when ACLs are configured by methods other than the configuration CLI, allowing an unauthenticated, remote attacker to bypass a configure...

5.8CVSS5.7AI score0.00967EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/09/23 2:25 a.m.29 views

CVE-2021-34696 Cisco ASR 900 and ASR 920 Series Aggregation Services Routers Access Control List Bypass Vulnerability

A vulnerability in the access control list ACL programming of Cisco ASR 900 and ASR 920 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to bypass a configured ACL. This vulnerability is due to incorrect programming of hardware when an ACL is configured using a...

5.8CVSS6AI score0.00967EPSS
Exploits0References1
Cisco
Cisco
added 2021/09/22 4:0 p.m.36 views

Cisco ASR 900 and ASR 920 Series Aggregation Services Routers Access Control List Bypass Vulnerability

A vulnerability in the access control list ACL programming of Cisco ASR 900 and ASR 920 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to bypass a configured ACL. This vulnerability is due to incorrect programming of hardware when an ACL is configured using a...

5.8CVSS5.7AI score0.00967EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/10/12 12:0 a.m.32 views

Cisco IOS XE Software for ASR 900 Series Route Switch Processor 3 Arbitrary Code Execution (cisco-sa-iosxe-rsp3-rce-jVHg8Z7c)

According to its self-reported version, IOS-XE for Cisco ASR 900 Series Aggregation Services Routers is affected by multiple vulnerabilities due to incorrect validations by boot scripts when specific ROM monitor ROMMON variables are set. An authenticated, local attacker with high privileges to...

6.9CVSS7.5AI score0.00322EPSS
Exploits0References6
CNVD
CNVD
added 2020/09/25 12:0 a.m.6 views

Cisco IOS XE Arbitrary Code Execution Vulnerability (CNVD-2021-43443)

Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. An arbitrary code execution vulnerability exists in the initialization routines of Cisco IOS XE used by Cisco ASR 900 Series Aggregation Services Routers, which can be exploited b...

6.9CVSS7.3AI score0.00322EPSS
Exploits0References1
CNVD
CNVD
added 2020/09/25 12:0 a.m.6 views

Cisco IOS XE Arbitrary Code Execution Vulnerability (CNVD-2021-43442)

Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. An arbitrary code execution vulnerability exists in the initialization routines of Cisco IOS XE used by the Cisco ASR 900 Series Aggregation Services Routers, which can be exploit...

6.9CVSS7.3AI score0.00322EPSS
Exploits0References1
NVD
NVD
added 2020/09/24 6:15 p.m.25 views

CVE-2020-3513

Multiple vulnerabilities in the initialization routines that are executed during bootup of Cisco IOS XE Software for Cisco ASR 900 Series Aggregation Services Routers with a Route Switch Processor 3 RSP3 installed could allow an authenticated, local attacker with high privileges to execute...

6.9CVSS0.00322EPSS
Exploits0References1
NVD
NVD
added 2020/09/24 6:15 p.m.22 views

CVE-2020-3416

Multiple vulnerabilities in the initialization routines that are executed during bootup of Cisco IOS XE Software for Cisco ASR 900 Series Aggregation Services Routers with a Route Switch Processor 3 RSP3 installed could allow an authenticated, local attacker with high privileges to execute...

6.9CVSS0.00322EPSS
Exploits0References1
Prion
Prion
added 2020/09/24 6:15 p.m.20 views

Design/Logic Flaw

Multiple vulnerabilities in the initialization routines that are executed during bootup of Cisco IOS XE Software for Cisco ASR 900 Series Aggregation Services Routers with a Route Switch Processor 3 RSP3 installed could allow an authenticated, local attacker with high privileges to execute...

6.9CVSS6.7AI score0.00322EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/09/24 6:15 p.m.16 views

Design/Logic Flaw

Multiple vulnerabilities in the initialization routines that are executed during bootup of Cisco IOS XE Software for Cisco ASR 900 Series Aggregation Services Routers with a Route Switch Processor 3 RSP3 installed could allow an authenticated, local attacker with high privileges to execute...

6.9CVSS6.7AI score0.00322EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/09/24 6:1 p.m.19 views

CVE-2020-3416 Cisco IOS XE Software for Cisco ASR 900 Series Route Switch Processor 3 Arbitrary Code Execution Vulnerabilities

Multiple vulnerabilities in the initialization routines that are executed during bootup of Cisco IOS XE Software for Cisco ASR 900 Series Aggregation Services Routers with a Route Switch Processor 3 RSP3 installed could allow an authenticated, local attacker with high privileges to execute...

6.7CVSS6.7AI score0.00322EPSS
Exploits0References1
CVE
CVE
added 2020/09/24 6:1 p.m.56 views

CVE-2020-3416

Cisco IOS XE Software for Cisco ASR 900 Series Route Switch Processor 3 (RSP3) consoles a set of boot-time vulnerabilities in the initialization routines. The issues stem from incorrect validations in boot scripts when specific ROMMON variables are defined, enabling an authenticated, local attack...

6.9CVSS6.7AI score0.00322EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2020/09/24 6:1 p.m.8 views

CVE-2020-3416 Cisco IOS XE Software for Cisco ASR 900 Series Route Switch Processor 3 Arbitrary Code Execution Vulnerabilities

Multiple vulnerabilities in the initialization routines that are executed during bootup of Cisco IOS XE Software for Cisco ASR 900 Series Aggregation Services Routers with a Route Switch Processor 3 RSP3 installed could allow an authenticated, local attacker with high privileges to execute...

6.7CVSS7.3AI score0.00322EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2020/09/24 5:51 p.m.11 views

CVE-2020-3513 Cisco IOS XE Software for Cisco ASR 900 Series Route Switch Processor 3 Arbitrary Code Execution Vulnerabilities

Multiple vulnerabilities in the initialization routines that are executed during bootup of Cisco IOS XE Software for Cisco ASR 900 Series Aggregation Services Routers with a Route Switch Processor 3 RSP3 installed could allow an authenticated, local attacker with high privileges to execute...

6.7CVSS7.3AI score0.00322EPSS
Exploits0References1
CVE
CVE
added 2020/09/24 5:51 p.m.56 views

CVE-2020-3513

CVE-2020-3513 affects Cisco IOS XE Software on Cisco ASR 900 Series Routers with Route Switch Processor 3 (RSP3). Connected advisories confirm multiple boot-time vulnerabilities tied to incorrect ROMMON variable handling and boot-script validation, enabling an authenticated local attacker with hi...

6.9CVSS6.7AI score0.00322EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/09/24 5:51 p.m.26 views

CVE-2020-3513 Cisco IOS XE Software for Cisco ASR 900 Series Route Switch Processor 3 Arbitrary Code Execution Vulnerabilities

Multiple vulnerabilities in the initialization routines that are executed during bootup of Cisco IOS XE Software for Cisco ASR 900 Series Aggregation Services Routers with a Route Switch Processor 3 RSP3 installed could allow an authenticated, local attacker with high privileges to execute...

6.7CVSS6.7AI score0.00322EPSS
Exploits0References1
Cisco
Cisco
added 2020/09/24 4:0 p.m.92 views

Cisco IOS XE Software for Cisco ASR 900 Series Route Switch Processor 3 Arbitrary Code Execution Vulnerabilities

Multiple vulnerabilities in the initialization routines that are executed during bootup of Cisco IOS XE Software for Cisco ASR 900 Series Aggregation Services Routers with a Route Switch Processor 3 RSP3 installed could allow an authenticated, local attacker with high privileges to execute...

6.7CVSS6.8AI score
Exploits0References1
Rows per page
Query Builder