Lucene search
K

30 matches found

The Hacker News
The Hacker News
added 2018/04/04 2:47 p.m.288 views

Critical flaw leaves thousands of Cisco Switches vulnerable to remote hacking

Security researchers at Embedi have disclosed a critical vulnerability in Cisco IOS Software and Cisco IOS XE Software that could allow an unauthenticated, remote attacker to execute arbitrary code, take full control over the vulnerable network equipment and intercept traffic. The stack-based...

10CVSS10.2AI score0.9951EPSS
Exploits2
OpenVAS
OpenVAS
added 2016/05/10 12:0 a.m.79 views

GNU Bash Environment Variable Command Injection Vulnerability

On September 24, 2014, a vulnerability in the Bash shell was publicly announced. The vulnerability is related to the way in which shell functions are passed though environment variables. The vulnerability may allow an attacker to inject commands into a Bash shell, depending on how the shell is...

10CVSS10AI score0.99999EPSS
Exploits130References10
securityvulns
securityvulns
added 2014/11/10 12:0 a.m.36 views

Cisco Security Advisory: Multiple Vulnerabilities in Cisco Small Business RV Series Routers

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Multiple Vulnerabilities in Cisco Small Business RV Series Routers Advisory ID: cisco-sa-20141105-rv Revision 1.0 For Public Release 2014 November 5 16:00 UTC GMT...

0.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2013/12/14 12:0 a.m.28 views

Cisco IOS XR Software Memory Exhaustion Vulnerability (cisco-sa-20131002-iosxr)

Cisco IOS XR Software version 4.3.1 contains a vulnerability that could result in complete packet memory exhaustion. Successful exploitation could render critical services on the affected device unable to allocate packets resulting in a denial of service DoS condition. Cisco has released free...

7.8CVSS5.5AI score0.01328EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/10/07 12:0 a.m.26 views

Cisco IOS Software DHCP Denial of Service Vulnerability (cisco-sa-20130925-dhcp)

A vulnerability exists in the DHCP implementation of Cisco IOS Software that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. The vulnerability occurs during the parsing of crafted DHCP packets. An attacker could exploit this vulnerability by sending...

7.8CVSS5.6AI score0.01887EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/10/07 12:0 a.m.29 views

Cisco IOS XE Software DHCP Denial of Service Vulnerability (cisco-sa-20130925-dhcp)

A vulnerability in the DHCP implementation of Cisco IOS XE Software allows an unauthenticated, remote attacker to cause a denial of service DoS condition. The vulnerability occurs during the parsing of crafted DHCP packets. An attacker can exploit this vulnerability by sending crafted DHCP packet...

7.8CVSS5.6AI score0.01887EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/10/07 12:0 a.m.25 views

Cisco IOS Software Queue Wedge Denial of Service Vulnerability (cisco-sa-20130925-wedge)

A vulnerability in the T1/E1 driver queue implementation of Cisco IOS Software could allow an unauthenticated, remote attacker to cause an interface wedge condition, which could lead to loss of connectivity, loss of routing protocol adjacency, and could result in a denial of service DoS scenario...

7.8CVSS5.7AI score0.01887EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/05/31 12:0 a.m.20 views

Cisco Device Manager Command Execution Vulnerability (cisco-sa-20130424-fmdm)

Cisco Device Manager contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary commands on a client host with the privileges of the user. This vulnerability affects Cisco Device Manager for the Cisco MDS 9000 Family and Cisco Nexus 5000 Series Switches whe...

9.3CVSS6.2AI score0.02409EPSS
Exploits0References2
securityvulns
securityvulns
added 2012/06/25 12:0 a.m.63 views

Cisco Security Advisory: Multiple Vulnerabilities in Cisco AnyConnect Secure Mobility Client

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Multiple Vulnerabilities in Cisco AnyConnect Secure Mobility Client Advisory ID: cisco-sa-20120620-ac Revision 1.0 For Public Release 2012 June 20 16:00 UTC GMT +--------------------------------------------------------------------- Summary ======= T...

1AI score
Exploits0
securityvulns
securityvulns
added 2012/04/02 12:0 a.m.66 views

Cisco Security Advisory: Cisco IOS Software Network Address Translation Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Cisco IOS Software Network Address Translation Vulnerability Advisory ID: cisco-sa-20120328-nat Revision 1.0 For Public Release 2012 March 28 16:00 UTC GMT +-------------------------------------------------------------------...

7.8CVSS0.2AI score0.02011EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2011/09/29 12:0 a.m.37 views

Cisco IOS Software IPS and Zone-Based Firewall Vulnerabilities - Cisco Systems

Cisco IOS Software contains two vulnerabilities related to Cisco IOS Intrusion Prevention System IPS and Cisco IOS Zone-Based Firewall features. These vulnerabilities are : - Memory leak - Denial of service caused by processing specially crafted HTTP packets Cisco has released free software updat...

7.8CVSS5.5AI score0.01798EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2011/09/29 12:0 a.m.26 views

Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerabilities (cisco-sa-20110928-sip)

Multiple vulnerabilities exist in the Session Initiation Protocol SIP implementation in Cisco IOS Software and Cisco IOS XE Software that could allow an unauthenticated, remote attacker to cause a reload of an affected device or trigger memory leaks that may result in system instabilities. Affect...

7.8CVSS5.4AI score0.01819EPSS
Exploits0References4
securityvulns
securityvulns
added 2011/09/05 12:0 a.m.57 views

Cisco Security Advisory: Denial of Service Vulnerability in Cisco TelePresence Codecs

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Denial of Service Vulnerability in Cisco TelePresence Codecs Advisory ID: cisco-sa-20110831-tandberg Revision 1.0 For Public Release 2011 August 31 1600 UTC GMT...

7.8CVSS0.5AI score0.12714EPSS
Exploits5
securityvulns
securityvulns
added 2010/09/24 12:0 a.m.64 views

Cisco Security Advisory: Cisco IOS Software Internet Group Management Protocol Denial of Service Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco IOS Software Internet Group Management Protocol Denial of Service Vulnerability Advisory ID: cisco-sa-20100922-igmp http://www.cisco.com/warp/public/707/cisco-sa-20100922-igmp.shtml Revision 1.0 For Public Release 2010...

7.1CVSS0.6AI score0.01551EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/09/01 12:0 a.m.55 views

TCP State Manipulation Denial of Service Vulnerabilities in Multiple Cisco Products - Cisco Systems

Multiple Cisco products are affected by denial of service DoS vulnerabilities that manipulate the state of Transmission Control Protocol TCP connections. By manipulating the state of a TCP connection, an attacker could force the TCP connection to remain in a long-lived state, possibly indefinitel...

7.8CVSS8AI score0.32123EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2010/09/01 12:0 a.m.40 views

Cisco IOS Software WebVPN and SSLVPN Vulnerabilities - Cisco Systems

Cisco IOS software contains two vulnerabilities within the Cisco IOS WebVPN or Cisco IOS SSLVPN feature SSLVPN that can be remotely exploited without authentication to cause a denial of service condition. Both vulnerabilities affect both Cisco IOS WebVPN and Cisco IOS SSLVPN features: - Crafted...

9CVSS5.5AI score0.01966EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2010/09/01 12:0 a.m.26 views

Cisco IOS Software Tunnels Vulnerability - Cisco Systems

Cisco devices running affected versions of Cisco IOS Software are vulnerable to a denial of service DoS attack if configured for IP tunnels and Cisco Express Forwarding. Cisco has released free software updates that address this vulnerability. TRUSTED...

7.1CVSS5.3AI score0.02309EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2010/09/01 12:0 a.m.26 views

Cisco IOS cTCP Denial of Service Vulnerability - Cisco Systems

A series of TCP packets may cause a denial of service DoS condition on Cisco IOS devices that are configured as Easy VPN servers with the Cisco Tunneling Control Protocol cTCP encapsulation feature. Cisco has released free software updates that address this vulnerability. No workarounds are...

7.1CVSS5.4AI score0.02508EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2010/09/01 12:0 a.m.28 views

Cisco uBR10012 Series Devices SNMP Vulnerability - Cisco Systems

Cisco uBR10012 series devices automatically enable Simple Network Management Protocol SNMP read/write access to the device if configured for linecard redundancy. This can be exploited by an attacker to gain complete control of the device. Only Cisco uBR10012 series devices that are configured for...

9.3CVSS5.5AI score0.03504EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2010/09/01 12:0 a.m.31 views

Cisco 10000, uBR10012, uBR7200 Series Devices IPC Vulnerability - Cisco Systems

Cisco 10000, uBR10012 and uBR7200 series devices use a User Datagram Protocol UDP based Inter-Process Communication IPC channel that is externally reachable. An attacker could exploit this vulnerability to cause a denial of service DoS condition on affected devices. No other platforms are affecte...

8.5CVSS5.4AI score0.03299EPSS
Exploits1References4
Rows per page
Query Builder