CVE-2026-20084

A vulnerability in the DHCP snooping feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause BOOTP packets to be forwarded between VLANs, resulting in a denial of service DoS condition. This vulnerability is due to improper handling of BOOTP packets on Cisco...

Vulnerabilities fixed in Cisco IOS XE Software

Cisco has fixed vulnerabilities in Cisco IOS XE Software, specifically for several products such as Catalyst 9000 Series Switches, Catalyst CW9800 Family, and Cisco Meraki. The vulnerabilities include several issues, such as a memory leak in the IKEv2 implementation, vulnerabilities in the DHCP...

EUVD-2026-15431

A vulnerability in the DHCP snooping feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause BOOTP packets to be forwarded between VLANs, resulting in a denial of service DoS condition. This vulnerability is due to improper handling of BOOTP packets on Cisco...

CVE-2026-20084

A vulnerability in the DHCP snooping feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause BOOTP packets to be forwarded between VLANs, resulting in a denial of service DoS condition. This vulnerability is due to improper handling of BOOTP packets on Cisco...

PT-2026-27790

Name of the Vulnerable Software and Affected Versions Cisco IOS XE Software affected versions not specified Description A flaw exists in the DHCP snooping feature that may allow a remote attacker to forward BOOTP packets between VLANs, leading to a denial of service DoS. This is caused by imprope...

EUVD-2022-26097

Malicious code in bioql PyPI...

EUVD-2022-25934

Malicious code in bioql PyPI...

EUVD-2022-26060

Malicious code in bioql PyPI...

EUVD-2021-6920

Malicious code in bioql PyPI...

EUVD-2022-25931

Malicious code in bioql PyPI...

CVE-2025-20311

A vulnerability in the handling of certain Ethernet frames in Cisco IOS XE Software for Catalyst 9000 Series Switches could allow an unauthenticated, adjacent attacker to cause an egress port to become blocked and drop all outbound traffic. This vulnerability is due to improper handling of crafte...

CVE-2025-20311

A vulnerability in the handling of certain Ethernet frames in Cisco IOS XE Software for Catalyst 9000 Series Switches could allow an unauthenticated, adjacent attacker to cause an egress port to become blocked and drop all outbound traffic. This vulnerability is due to improper handling of crafte...

Cisco IOS XE Software for Catalyst 9000 Series Switches Denial of Service Vulnerability

A vulnerability in the handling of certain Ethernet frames in Cisco IOS XE Software for Catalyst 9000 Series Switches could allow an unauthenticated, adjacent attacker to cause an egress port to become blocked and drop all outbound traffic. This vulnerability is due to improper handling of crafte...

PT-2025-39299

Name of the Vulnerable Software and Affected Versions Cisco IOS XE Software for Catalyst 9000 Series Switches affected versions not specified Description A flaw exists in how certain Ethernet frames are processed, potentially allowing a nearby, unauthenticated attacker to disrupt network traffic...

Cisco Catalyst 9000 Series Switches Denial of Service Vulnerability

A vulnerability in Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on the control plane of an affected device. This vulnerability is due to improper handling of frames with VLAN tag information. An attacker could exploit this...

The vulnerability of the command-line interface (CLI) of Cisco IOS XE operating systems for Cisco Catalyst 9000 Series network devices is related to privilege assignment errors, which allow an attacker to execute arbitrary commands.

The vulnerability of the command-line interface CLI of Cisco IOS XE operating systems for Cisco Catalyst 9000 Series network devices is related to privilege assignment errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands on the Cisco IOS XE base operating...

The vulnerability in the implementation of the Simple Network Management Protocol (SNMP) on Cisco IOS XE Catalyst access points and Cisco Catalyst 9000 wireless network controllers, related to errors in request processing, allows a perpetrator to disclose protected information.

The vulnerability of the Simple Network Management Protocol SNMP implementation on Cisco IOS XE Catalyst access points and Cisco Catalyst 9000 wireless network controllers is related to errors in handling requests. Exploiting this vulnerability can allow a malicious actor to disclose protected...

The vulnerability of the DHCP protocol implementation in Cisco IOS XE operating systems for Cisco Catalyst 9000 Series network devices leads to uncontrolled resource consumption. This allows attackers to trigger a device reboot or cause service failure.

The vulnerability of the DHCP protocol implementation in Cisco IOS XE operating systems and Cisco Catalyst 9000 Series network devices is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to trigger a device reboot or cause service...

The vulnerability relates to the implementation of the Control and Provisioning of Wireless Access Points protocol (CAPWAP) in Cisco IOS XE operating systems, Catalyst access points, and Cisco Catalyst 9000 series wireless network controllers. It stems from insufficient resource management during their existence, allowing attackers to trigger service interruptions.

The vulnerability of the CAPWAP protocol implementation for Cisco IOS XE operating systems, Catalyst access points, and Cisco Catalyst 9000 series wireless network controllers is related to insufficient resource management during their existence. Exploiting this vulnerability could allow a...

Cisco IOS XE Software Wireless Controller for the Catalyst 9000 Family CAPWAP Mobility DoS (cisco-sa-c9800-mob-dos-342YAc6J)

A vulnerability in the processing of Control and Provisioning of Wireless Access Points CAPWAP Mobility messages in Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected...