EUVD-2002-0336

Malware in sbrugna...

CVE-2025-20189

A vulnerability in the Cisco Express Forwarding functionality of Cisco IOS XE Software for Cisco ASR 903 Aggregation Services Routers with Route Switch Processor 3 RSP3C could allow an unauthenticated, adjacent attacker to trigger a denial of service DoS condition. This vulnerability is due to...

CVE-2019-1686 Cisco ASR 9000 Series Aggregation Services Routers ACL Bypass Vulnerability

A vulnerability in the TCP flags inspection feature for access control lists ACLs on Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to bypass protection offered by a configured ACL on an affected device. The vulnerability is due to incorrect...

Cisco ASR 9000 Series Aggregation Services Routers ACL Bypass Vulnerability

A vulnerability in the TCP flags inspection feature for access control lists ACLs on Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to bypass protection offered by a configured ACL on an affected device. The vulnerability is due to incorrect...

Race condition

Race condition in the Common Classification Engine CCE in the Measurement, Aggregation, and Correlation Engine MACE implementation in Cisco IOS 15.42T3 and earlier allows remote attackers to cause a denial of service device reload via crafted network traffic that triggers improper handling of the...

CVE-2015-0609

CVE-2015-0609 affects Cisco IOS MACE (Common Classification Engine) within the MACE platform. The root cause is a race condition between process switching and Cisco Express Forwarding (CEF) switching in the CCE, allowing unauthenticated remote attackers to trigger improper timing handling and cau...

Race condition

Race condition in the object-group ACL feature in Cisco IOS 15.52T and earlier allows remote attackers to bypass intended access restrictions via crafted network traffic that triggers improper handling of the timing of process switching and Cisco Express Forwarding CEF switching, aka Bug ID...

CVE-2015-0610

Race condition in the object-group ACL feature in Cisco IOS 15.52T and earlier allows remote attackers to bypass intended access restrictions via crafted network traffic that triggers improper handling of the timing of process switching and Cisco Express Forwarding CEF switching, aka Bug ID...

Cisco IOS Software Access Control List Bypass Vulnerability

A vulnerability in Cisco IOS Software access control lists ACLs that use object groups could occasionally allow an unauthenticated, remote attacker to bypass the ACL. The vulnerability is due to a race condition between process switching and Cisco Express Forwarding switching while evaluating ACL...

Cisco IOS XE Software IP Header Sanity Check Denial of Service Vulnerability

A vulnerability in the Cisco Express Forwarding processing module that checks the sanity of IP headers on Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, leading to a denial of service DoS condition. The vulnerability is due to improper...

CVE-2013-6706

The Cisco Express Forwarding processing module in Cisco IOS XE allows remote attackers to cause a denial of service device reload via crafted MPLS packets that are not properly handled during IP header validation, aka Bug ID CSCuj23992...

Design/Logic Flaw

The Cisco Express Forwarding processing module in Cisco IOS XE allows remote attackers to cause a denial of service device reload via crafted MPLS packets that are not properly handled during IP header validation, aka Bug ID CSCuj23992...

CVE-2013-6706

The Cisco Express Forwarding processing module in Cisco IOS XE allows remote attackers to cause a denial of service device reload via crafted MPLS packets that are not properly handled during IP header validation, aka Bug ID CSCuj23992...

Cisco IOS Software Tunnels Vulnerability - Cisco Systems

Cisco devices running affected versions of Cisco IOS Software are vulnerable to a denial of service DoS attack if configured for IP tunnels and Cisco Express Forwarding. Cisco has released free software updates that address this vulnerability. TRUSTED...

Data Leak with Cisco Express Forwarding Enabled - Cisco Systems

Excluding Cisco 12000 Series Internet Routers, all Cisco devices running Cisco IOS software that have Cisco Express Forwarding CEF enabled can leak information from previous packets that have been handled by the device. This can happen if the packet length described in the IP header is bigger tha...

CVE-2009-2873

Cisco IOS 12.0 through 12.4, when IP-based tunnels and the Cisco Express Forwarding feature are enabled, allows remote attackers to cause a denial of service device reload via malformed packets, aka Bug ID CSCsx70889...

Code injection

Cisco IOS 12.0 through 12.4, when IP-based tunnels and the Cisco Express Forwarding feature are enabled, allows remote attackers to cause a denial of service device reload via a malformed packet that is not properly handled during switching from one tunnel to a second tunnel, aka Bug IDs CSCsh975...

Code injection

Cisco IOS 12.0 through 12.4, when IP-based tunnels and the Cisco Express Forwarding feature are enabled, allows remote attackers to cause a denial of service device reload via malformed packets, aka Bug ID CSCsx70889...

CVE-2009-2872

Cisco IOS 12.0 through 12.4, when IP-based tunnels and the Cisco Express Forwarding feature are enabled, allows remote attackers to cause a denial of service device reload via a malformed packet that is not properly handled during switching from one tunnel to a second tunnel, aka Bug IDs CSCsh975...

Cisco IOS Software Tunnels Vulnerability

Cisco devices running affected versions of Cisco IOS Software are vulnerable to a denial of service DoS attack if configured for IP tunnels and Cisco Express Forwarding. Cisco has released software updates that address this vulnerability. This advisory is posted at...