Lucene search
K

6 matches found

ThreatPost
ThreatPost
added 2020/09/02 12:28 p.m.310 views

Cisco Warns of Active Exploitation of Flaw in Carrier-Grade Routers

Cisco Systems says hackers are actively exploiting previously unpatched vulnerabilities in its carrier-grade routers that could allow adversaries to crash or severely disrupt devices. The vulnerabilities exist in the Distance Vector Multicast Routing Protocol DVMRP feature of Cisco IOS XR Softwar...

7.8CVSS1.4AI score0.26869EPSS
Exploits0References10
The Hacker News
The Hacker News
added 2020/09/01 7:39 a.m.7 views

Cisco Issues Warning Over IOS XR Zero-Day Flaw Being Targeted in the Wild

Cisco has warned of an active zero-day vulnerability in its router software that's being exploited in the wild and could allow a remote, authenticated attacker to carry out memory exhaustion attacks on an affected device. "An attacker could exploit these vulnerabilities by sending crafted IGMP...

8.6CVSS7.2AI score0.03631EPSS
Exploits0
The Hacker News
The Hacker News
added 2020/09/01 7:39 a.m.62 views

Cisco Issues Warning Over IOS XR Zero-Day Flaw Being Targeted in the Wild

Cisco has warned of an active zero-day vulnerability in its router software that's being exploited in the wild and could allow a remote, authenticated attacker to carry out memory exhaustion attacks on an affected device. "An attacker could exploit these vulnerabilities by sending crafted IGMP...

8.6CVSS0.7AI score0.03631EPSS
Exploits0
Circl
Circl
added 2020/08/31 4:0 a.m.9 views

CVE-2020-3566

creationtimestamp| type| source ---|---|--- 2020-08-31 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=507 2020-08-31 12:08:04+00:00| seen| https://t.me/icscert/337 2020-08-31 16:28:28+00:00| exploited| https://t.me/informationsecuritychannel/40069 2020-08-31 17:21:12+00:0...

8.6CVSS7.4AI score0.03631EPSS
Exploits0References14
CVE
CVE
added 2020/08/29 3:15 p.m.1092 views

CVE-2020-3566

CVE-2020-3566 affects Cisco IOS XR Software, exploiting the DVMRP feature via crafted IGMP traffic to exhaust device memory and disrupt processes. Root cause is insufficient IGMP queue management within DVMRP, potentially impacting interior/exterior routing protocols and causing instability. Mult...

8.6CVSS8AI score0.03631EPSS
In wildExploits0References2Affected Software1
Cvelist
Cvelist
added 2020/08/29 3:15 p.m.33 views

CVE-2020-3566 Cisco IOS XR Software DVMRP Memory Exhaustion Vulnerability

A vulnerability in the Distance Vector Multicast Routing Protocol DVMRP feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to exhaust process memory of an affected device. The vulnerability is due to insufficient queue management for Internet Group Management Protoco...

8.6CVSS8.6AI score0.03631EPSS
Exploits0References1
Rows per page
Query Builder