CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

30 matches found

The Hacker News•added 2018/04/04 2:47 p.m.•288 views

Critical flaw leaves thousands of Cisco Switches vulnerable to remote hacking

Security researchers at Embedi have disclosed a critical vulnerability in Cisco IOS Software and Cisco IOS XE Software that could allow an unauthenticated, remote attacker to execute arbitrary code, take full control over the vulnerable network equipment and intercept traffic. The stack-based...

10CVSS10.2AI score0.92901EPSS

Exploits2

OpenVAS•added 2016/05/10 12:0 a.m.•79 views

GNU Bash Environment Variable Command Injection Vulnerability

On September 24, 2014, a vulnerability in the Bash shell was publicly announced. The vulnerability is related to the way in which shell functions are passed though environment variables. The vulnerability may allow an attacker to inject commands into a Bash shell, depending on how the shell is...

10CVSS10AI score0.9422EPSS

Exploits130References10

securityvulns•added 2014/11/10 12:0 a.m.•35 views

Cisco Security Advisory: Multiple Vulnerabilities in Cisco Small Business RV Series Routers

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Multiple Vulnerabilities in Cisco Small Business RV Series Routers Advisory ID: cisco-sa-20141105-rv Revision 1.0 For Public Release 2014 November 5 16:00 UTC GMT...

0.8AI score

Exploits0

Tenable Nessus•added 2013/12/14 12:0 a.m.•27 views

Cisco IOS XR Software Memory Exhaustion Vulnerability (cisco-sa-20131002-iosxr)

Cisco IOS XR Software version 4.3.1 contains a vulnerability that could result in complete packet memory exhaustion. Successful exploitation could render critical services on the affected device unable to allocate packets resulting in a denial of service DoS condition. Cisco has released free...

7.8CVSS5.5AI score0.00427EPSS

Exploits0References2

Tenable Nessus•added 2013/10/07 12:0 a.m.•29 views

Cisco IOS XE Software DHCP Denial of Service Vulnerability (cisco-sa-20130925-dhcp)

A vulnerability in the DHCP implementation of Cisco IOS XE Software allows an unauthenticated, remote attacker to cause a denial of service DoS condition. The vulnerability occurs during the parsing of crafted DHCP packets. An attacker can exploit this vulnerability by sending crafted DHCP packet...

7.8CVSS5.6AI score0.00316EPSS

Exploits0References2

Tenable Nessus•added 2013/10/07 12:0 a.m.•25 views

Cisco IOS Software DHCP Denial of Service Vulnerability (cisco-sa-20130925-dhcp)

A vulnerability exists in the DHCP implementation of Cisco IOS Software that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. The vulnerability occurs during the parsing of crafted DHCP packets. An attacker could exploit this vulnerability by sending...

7.8CVSS5.6AI score0.00316EPSS

Exploits0References2

Tenable Nessus•added 2013/10/07 12:0 a.m.•24 views

Cisco IOS Software Queue Wedge Denial of Service Vulnerability (cisco-sa-20130925-wedge)

A vulnerability in the T1/E1 driver queue implementation of Cisco IOS Software could allow an unauthenticated, remote attacker to cause an interface wedge condition, which could lead to loss of connectivity, loss of routing protocol adjacency, and could result in a denial of service DoS scenario...

7.8CVSS5.7AI score0.00427EPSS

Exploits0References2

Tenable Nessus•added 2013/05/31 12:0 a.m.•19 views

Cisco Device Manager Command Execution Vulnerability (cisco-sa-20130424-fmdm)

Cisco Device Manager contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary commands on a client host with the privileges of the user. This vulnerability affects Cisco Device Manager for the Cisco MDS 9000 Family and Cisco Nexus 5000 Series Switches whe...

9.3CVSS6.2AI score0.00837EPSS

Exploits0References2

securityvulns•added 2012/06/25 12:0 a.m.•62 views

Cisco Security Advisory: Multiple Vulnerabilities in Cisco AnyConnect Secure Mobility Client

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Multiple Vulnerabilities in Cisco AnyConnect Secure Mobility Client Advisory ID: cisco-sa-20120620-ac Revision 1.0 For Public Release 2012 June 20 16:00 UTC GMT +--------------------------------------------------------------------- Summary ======= T...

1AI score

Exploits0

securityvulns•added 2012/04/02 12:0 a.m.•64 views

Cisco Security Advisory: Cisco IOS Software Network Address Translation Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Cisco IOS Software Network Address Translation Vulnerability Advisory ID: cisco-sa-20120328-nat Revision 1.0 For Public Release 2012 March 28 16:00 UTC GMT +-------------------------------------------------------------------...

7.8CVSS0.2AI score0.0215EPSS

Exploits0

Tenable Nessus•added 2011/09/29 12:0 a.m.•35 views

Cisco IOS Software IPS and Zone-Based Firewall Vulnerabilities - Cisco Systems

Cisco IOS Software contains two vulnerabilities related to Cisco IOS Intrusion Prevention System IPS and Cisco IOS Zone-Based Firewall features. These vulnerabilities are : - Memory leak - Denial of service caused by processing specially crafted HTTP packets Cisco has released free software updat...

7.8CVSS5.5AI score0.00427EPSS

Exploits0References4

Tenable Nessus•added 2011/09/29 12:0 a.m.•25 views

Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerabilities (cisco-sa-20110928-sip)

Multiple vulnerabilities exist in the Session Initiation Protocol SIP implementation in Cisco IOS Software and Cisco IOS XE Software that could allow an unauthenticated, remote attacker to cause a reload of an affected device or trigger memory leaks that may result in system instabilities. Affect...

7.8CVSS5.4AI score0.00708EPSS

Exploits0References4

securityvulns•added 2011/09/05 12:0 a.m.•56 views

Cisco Security Advisory: Denial of Service Vulnerability in Cisco TelePresence Codecs

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Denial of Service Vulnerability in Cisco TelePresence Codecs Advisory ID: cisco-sa-20110831-tandberg Revision 1.0 For Public Release 2011 August 31 1600 UTC GMT...

7.8CVSS0.5AI score0.09943EPSS

Exploits5

securityvulns•added 2010/09/24 12:0 a.m.•61 views

Cisco Security Advisory: Cisco IOS Software Internet Group Management Protocol Denial of Service Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco IOS Software Internet Group Management Protocol Denial of Service Vulnerability Advisory ID: cisco-sa-20100922-igmp http://www.cisco.com/warp/public/707/cisco-sa-20100922-igmp.shtml Revision 1.0 For Public Release 2010...

7.1CVSS0.6AI score0.00399EPSS

Exploits0

Tenable Nessus•added 2010/09/01 12:0 a.m.•54 views

TCP State Manipulation Denial of Service Vulnerabilities in Multiple Cisco Products - Cisco Systems

Multiple Cisco products are affected by denial of service DoS vulnerabilities that manipulate the state of Transmission Control Protocol TCP connections. By manipulating the state of a TCP connection, an attacker could force the TCP connection to remain in a long-lived state, possibly indefinitel...

7.8CVSS8AI score0.01982EPSS

Exploits3References5

Tenable Nessus•added 2010/09/01 12:0 a.m.•26 views

Cisco IOS Software Tunnels Vulnerability - Cisco Systems

Cisco devices running affected versions of Cisco IOS Software are vulnerable to a denial of service DoS attack if configured for IP tunnels and Cisco Express Forwarding. Cisco has released free software updates that address this vulnerability. TRUSTED...

7.1CVSS5.3AI score0.01257EPSS

Exploits0References4

Tenable Nessus•added 2010/09/01 12:0 a.m.•28 views

Cisco 10000, uBR10012, uBR7200 Series Devices IPC Vulnerability - Cisco Systems

Cisco 10000, uBR10012 and uBR7200 series devices use a User Datagram Protocol UDP based Inter-Process Communication IPC channel that is externally reachable. An attacker could exploit this vulnerability to cause a denial of service DoS condition on affected devices. No other platforms are affecte...

8.5CVSS5.4AI score0.01602EPSS

Exploits1References4

Tenable Nessus•added 2010/09/01 12:0 a.m.•25 views

Cisco IOS Multicast Virtual Private Network (MVPN) Data Leak - Cisco Systems

A vulnerability in the Cisco implementation of Multicast Virtual Private Network MVPN is subject to exploitation that can allow a malicious user to create extra multicast states on the core routers or receive multicast traffic from other Multiprotocol Label Switching MPLS based Virtual Private...

5.1CVSS5.5AI score0.00794EPSS

Exploits1References3

Tenable Nessus•added 2010/09/01 12:0 a.m.•25 views

Cisco IOS cTCP Denial of Service Vulnerability - Cisco Systems

A series of TCP packets may cause a denial of service DoS condition on Cisco IOS devices that are configured as Easy VPN servers with the Cisco Tunneling Control Protocol cTCP encapsulation feature. Cisco has released free software updates that address this vulnerability. No workarounds are...

7.1CVSS5.4AI score0.01415EPSS

Exploits1References3

Tenable Nessus•added 2010/09/01 12:0 a.m.•38 views

Cisco IOS Software WebVPN and SSLVPN Vulnerabilities - Cisco Systems

Cisco IOS software contains two vulnerabilities within the Cisco IOS WebVPN or Cisco IOS SSLVPN feature SSLVPN that can be remotely exploited without authentication to cause a denial of service condition. Both vulnerabilities affect both Cisco IOS WebVPN and Cisco IOS SSLVPN features: - Crafted...

9CVSS5.5AI score0.01566EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by