185 matches found
Cisco IOS XR Software for ASR 9000 Series Routers DoS (cisco-sa-npspin-QYpwdhFD)
According to its self-reported version, Cisco IOS XR is affected by denial of service vulnerability due to incorrect handling of specific Ethernet frames that cause a spin loop that can make the network processors unresponsive. An unauthenticated, adjacent attacker can exploit these by sending...
The vulnerability of the Cisco IOS XR operating system, related to resource management errors, allows a attacker to reboot the compromised line card.
The vulnerability of the Cisco IOS XR operating system is related to resource management errors. Exploiting this vulnerability allows a malicious actor to cause a reboot of the affected line card by sending certain types of Ethernet frames to the segment connected to the affected line cards...
CVE-2021-34713
A vulnerability in the Layer 2 punt code of Cisco IOS XR Software running on Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, adjacent attacker to cause the affected line card to reboot. This vulnerability is due to incorrect handling of specific Ethernet frames...
Code injection
A vulnerability in the Layer 2 punt code of Cisco IOS XR Software running on Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, adjacent attacker to cause the affected line card to reboot. This vulnerability is due to incorrect handling of specific Ethernet frames...
CVE-2021-34713 Cisco IOS XR Software for ASR 9000 Series Routers Denial of Service Vulnerability
A vulnerability in the Layer 2 punt code of Cisco IOS XR Software running on Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, adjacent attacker to cause the affected line card to reboot. This vulnerability is due to incorrect handling of specific Ethernet frames...
CVE-2021-34713 Cisco IOS XR Software for ASR 9000 Series Routers Denial of Service Vulnerability
A vulnerability in the Layer 2 punt code of Cisco IOS XR Software running on Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, adjacent attacker to cause the affected line card to reboot. This vulnerability is due to incorrect handling of specific Ethernet frames...
Cisco IOS XR Software for ASR 9000 Series Routers Denial of Service Vulnerability
A vulnerability in the Layer 2 punt code of Cisco IOS XR Software running on Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, adjacent attacker to cause the affected line card to reboot. This vulnerability is due to incorrect handling of specific Ethernet frames...
Beckhoff Twincat Exposure of Sensitive Information to an Unauthorized Actor
Beckhoff's TwinCAT RT network driver for Intel 8254x and 8255x is providing EtherCAT functionality. The driver implements real-time features. Except for Ethernet frames sent from real-time functionality, all other Ethernet frames sent through the driver are not padded if their payload is less tha...
Cisco Firepower Threat Defense Software Inline Pair/Passive Mode DoS (cisco-sa-ftd-inline-dos-nXqUyEqM)
According to its self-reported version, Cisco Firepower Threat Defense Software is affected by a vulnerability in the ingress packet processing path for interfaces that are configured either as Inline Pair or in Passive mode could allow an unauthenticated, adjacent attacker to cause a denial of...
Cisco IoT Field Network Director DoS (cisco-sa-iot-coap-dos-WTBu6YTq)
A denial of service DoS vulnerability exists in Cisco IoT Field Network Director due to incorrect handling of certain valid, but not typical, Ethernet frames. An unauthenticated, remote attacker can exploit this issue by sending the Ethernet frames onto the Ethernet segment, to cause the device t...
Vulnerability fixed in Snort
A vulnerability has been fixed in Snort. The vulnerability allows an unauthenticated malicious party to cause a denial-of-service denial-of-service. The malicious party should be able to send rogue send Ethernet frames to a device that then then handles them. Cisco indicates that the...
Multiple Palo Alto Networks Product Information Disclosure Vulnerabilities
Palo Alto Networks PAN-OS and others are products of Palo Alto Networks, Inc.Palo Alto Networks PAN-OS is a set of operating systems developed for its firewall appliances.Palo Alto Networks PA-200 is a firewall appliance.Palo Alto Networks PA-220 is a firewall appliance. An information disclosure...
The vulnerability of Cisco Firepower Threat Defense’s microprogramming software arises from insufficient checks during Ethernet frame processing, allowing attackers to trigger service interruptions.
The vulnerability of Cisco Firepower Threat Defense’s microprogramming software exists due to insufficient checks during the processing of Ethernet frames. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending malicious Ethernet frames through the...
Cisco Firepower Threat Defense (FTD) Input Validation Error Vulnerability
Cisco Firepower Threat Defense FTD is a suite of unified software from the U.S. company Cisco Cisco that provides next-generation firewall services. A security vulnerability exists in Cisco Firepower Threat Defense FTD that results from insufficient authentication when processing Ethernet frames...
CVE-2020-3577
A vulnerability in the ingress packet processing path of Cisco Firepower Threat Defense FTD Software for interfaces that are configured either as Inline Pair or in Passive mode could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition. The vulnerability is due t...
Input validation
A vulnerability in the ingress packet processing path of Cisco Firepower Threat Defense FTD Software for interfaces that are configured either as Inline Pair or in Passive mode could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition. The vulnerability is due t...
CVE-2020-3577
Cisco Firepower Threat Defense (FTD) software, specifically interfaces configured as Inline Pair or in Passive mode, is affected by a DoS in the ingress packet processing path due to insufficient validation of Ethernet frames. An unauthenticated adjacent attacker can trigger either a device login...
Cisco Firepower Threat Defense Software Inline Pair/Passive Mode Denial of Service Vulnerability
A vulnerability in the ingress packet processing path of Cisco Firepower Threat Defense FTD Software for interfaces that are configured either as Inline Pair or in Passive mode could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition. The vulnerability is due t...
Cisco IOS XE & Cisco IOS XE SDWAN Ethernet Frame DoS (cisco-sa-le-drTOB625)
According to its self-reported version, Cisco IOS XE or Cisco IOS XE SDWAN is affected by a denial of service DoS vulnerability in its networking component due to a failure to handle malformed ethernet frames. An unauthenticated, adjacent attacker can exploit this issue, by sending specially...
CVE-2020-3465
A vulnerability in Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a device to reload. The vulnerability is due to incorrect handling of certain valid, but not typical, Ethernet frames. An attacker could exploit this vulnerability by sending the Ethernet frames on...