Lucene search
K

185 matches found

Tenable Nessus
Tenable Nessus
added 2022/01/21 12:0 a.m.24 views

Cisco IOS XR Software for ASR 9000 Series Routers DoS (cisco-sa-npspin-QYpwdhFD)

According to its self-reported version, Cisco IOS XR is affected by denial of service vulnerability due to incorrect handling of specific Ethernet frames that cause a spin loop that can make the network processors unresponsive. An unauthenticated, adjacent attacker can exploit these by sending...

7.4CVSS7.4AI score0.0036EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2021/09/23 12:0 a.m.4 views

The vulnerability of the Cisco IOS XR operating system, related to resource management errors, allows a attacker to reboot the compromised line card.

The vulnerability of the Cisco IOS XR operating system is related to resource management errors. Exploiting this vulnerability allows a malicious actor to cause a reboot of the affected line card by sending certain types of Ethernet frames to the segment connected to the affected line cards...

7.4CVSS7.2AI score0.0036EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2021/09/09 5:15 a.m.4 views

CVE-2021-34713

A vulnerability in the Layer 2 punt code of Cisco IOS XR Software running on Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, adjacent attacker to cause the affected line card to reboot. This vulnerability is due to incorrect handling of specific Ethernet frames...

7.4CVSS7.2AI score
Exploits0References1
Prion
Prion
added 2021/09/09 5:15 a.m.13 views

Code injection

A vulnerability in the Layer 2 punt code of Cisco IOS XR Software running on Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, adjacent attacker to cause the affected line card to reboot. This vulnerability is due to incorrect handling of specific Ethernet frames...

6.1CVSS7.3AI score0.0036EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/09/09 5:0 a.m.19 views

CVE-2021-34713 Cisco IOS XR Software for ASR 9000 Series Routers Denial of Service Vulnerability

A vulnerability in the Layer 2 punt code of Cisco IOS XR Software running on Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, adjacent attacker to cause the affected line card to reboot. This vulnerability is due to incorrect handling of specific Ethernet frames...

7.4CVSS7.5AI score0.0036EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/09/09 5:0 a.m.10 views

CVE-2021-34713 Cisco IOS XR Software for ASR 9000 Series Routers Denial of Service Vulnerability

A vulnerability in the Layer 2 punt code of Cisco IOS XR Software running on Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, adjacent attacker to cause the affected line card to reboot. This vulnerability is due to incorrect handling of specific Ethernet frames...

7.4CVSS6.9AI score0.0036EPSS
Exploits0References1
Cisco
Cisco
added 2021/09/08 4:0 p.m.45 views

Cisco IOS XR Software for ASR 9000 Series Routers Denial of Service Vulnerability

A vulnerability in the Layer 2 punt code of Cisco IOS XR Software running on Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, adjacent attacker to cause the affected line card to reboot. This vulnerability is due to incorrect handling of specific Ethernet frames...

7.4CVSS7.4AI score0.0036EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/08/10 12:0 a.m.45 views

Beckhoff Twincat Exposure of Sensitive Information to an Unauthorized Actor

Beckhoff's TwinCAT RT network driver for Intel 8254x and 8255x is providing EtherCAT functionality. The driver implements real-time features. Except for Ethernet frames sent from real-time functionality, all other Ethernet frames sent through the driver are not padded if their payload is less tha...

5CVSS0.8AI score0.01014EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/08/10 12:0 a.m.22 views

Cisco Firepower Threat Defense Software Inline Pair/Passive Mode DoS (cisco-sa-ftd-inline-dos-nXqUyEqM)

According to its self-reported version, Cisco Firepower Threat Defense Software is affected by a vulnerability in the ingress packet processing path for interfaces that are configured either as Inline Pair or in Passive mode could allow an unauthenticated, adjacent attacker to cause a denial of...

7.4CVSS7.3AI score0.00428EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/07/28 12:0 a.m.21 views

Cisco IoT Field Network Director DoS (cisco-sa-iot-coap-dos-WTBu6YTq)

A denial of service DoS vulnerability exists in Cisco IoT Field Network Director due to incorrect handling of certain valid, but not typical, Ethernet frames. An unauthenticated, remote attacker can exploit this issue by sending the Ethernet frames onto the Ethernet segment, to cause the device t...

7.5CVSS7.4AI score0.01665EPSS
Exploits0References2
NCSC
NCSC
added 2021/03/05 12:0 a.m.7 views

Vulnerability fixed in Snort

A vulnerability has been fixed in Snort. The vulnerability allows an unauthenticated malicious party to cause a denial-of-service denial-of-service. The malicious party should be able to send rogue send Ethernet frames to a device that then then handles them. Cisco indicates that the...

7.4CVSS6.7AI score0.02756EPSS
Exploits0
CNNVD
CNNVD
added 2021/01/13 12:0 a.m.8 views

Multiple Palo Alto Networks Product Information Disclosure Vulnerabilities

Palo Alto Networks PAN-OS and others are products of Palo Alto Networks, Inc.Palo Alto Networks PAN-OS is a set of operating systems developed for its firewall appliances.Palo Alto Networks PA-200 is a firewall appliance.Palo Alto Networks PA-220 is a firewall appliance. An information disclosure...

4.3CVSS6.1AI score0.00538EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2020/11/10 12:0 a.m.5 views

The vulnerability of Cisco Firepower Threat Defense’s microprogramming software arises from insufficient checks during Ethernet frame processing, allowing attackers to trigger service interruptions.

The vulnerability of Cisco Firepower Threat Defense’s microprogramming software exists due to insufficient checks during the processing of Ethernet frames. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending malicious Ethernet frames through the...

7.4CVSS7.2AI score0.00428EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2020/10/23 12:0 a.m.4 views

Cisco Firepower Threat Defense (FTD) Input Validation Error Vulnerability

Cisco Firepower Threat Defense FTD is a suite of unified software from the U.S. company Cisco Cisco that provides next-generation firewall services. A security vulnerability exists in Cisco Firepower Threat Defense FTD that results from insufficient authentication when processing Ethernet frames...

7.4CVSS6.8AI score0.00428EPSS
Exploits0References1
OSV
OSV
added 2020/10/21 7:15 p.m.2 views

CVE-2020-3577

A vulnerability in the ingress packet processing path of Cisco Firepower Threat Defense FTD Software for interfaces that are configured either as Inline Pair or in Passive mode could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition. The vulnerability is due t...

7.4CVSS7.1AI score
Exploits0References1
Prion
Prion
added 2020/10/21 7:15 p.m.14 views

Input validation

A vulnerability in the ingress packet processing path of Cisco Firepower Threat Defense FTD Software for interfaces that are configured either as Inline Pair or in Passive mode could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition. The vulnerability is due t...

6.1CVSS7.3AI score0.00428EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/10/21 6:40 p.m.54 views

CVE-2020-3577

Cisco Firepower Threat Defense (FTD) software, specifically interfaces configured as Inline Pair or in Passive mode, is affected by a DoS in the ingress packet processing path due to insufficient validation of Ethernet frames. An unauthenticated adjacent attacker can trigger either a device login...

7.4CVSS7.4AI score0.00428EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2020/10/21 4:0 p.m.19 views

Cisco Firepower Threat Defense Software Inline Pair/Passive Mode Denial of Service Vulnerability

A vulnerability in the ingress packet processing path of Cisco Firepower Threat Defense FTD Software for interfaces that are configured either as Inline Pair or in Passive mode could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition. The vulnerability is due t...

7.4CVSS7.5AI score0.00428EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/10/14 12:0 a.m.33 views

Cisco IOS XE & Cisco IOS XE SDWAN Ethernet Frame DoS (cisco-sa-le-drTOB625)

According to its self-reported version, Cisco IOS XE or Cisco IOS XE SDWAN is affected by a denial of service DoS vulnerability in its networking component due to a failure to handle malformed ethernet frames. An unauthenticated, adjacent attacker can exploit this issue, by sending specially...

7.4CVSS7.1AI score0.00666EPSS
Exploits0References4
OSV
OSV
added 2020/09/24 6:15 p.m.2 views

CVE-2020-3465

A vulnerability in Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a device to reload. The vulnerability is due to incorrect handling of certain valid, but not typical, Ethernet frames. An attacker could exploit this vulnerability by sending the Ethernet frames on...

6.5CVSS6.9AI score
Exploits0References1
Rows per page
Query Builder