Lucene search
+L

20 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-24470

Malware in sbrugna...

8.8CVSS8.2AI score0.00682EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-24528

Malware in sbrugna...

8.1CVSS8.1AI score0.00703EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/03/24 8:6 p.m.45 views

CVE-2021-1441 Cisco IOS XE Software Hardware Initialization Routines Arbitrary Code Execution Vulnerability

A vulnerability in the hardware initialization routines of Cisco IOS XE Software for Cisco 1100 Series Industrial Integrated Services Routers and Cisco ESR6300 Embedded Series Routers could allow an authenticated, local attacker to execute unsigned code at system boot time. This vulnerability is...

6.7CVSS6.7AI score0.00308EPSS
Exploits0References1
NVD
NVD
added 2020/06/03 6:15 p.m.16 views

CVE-2020-3258

Multiple vulnerabilities in Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers Industrial ISRs and Cisco 1000 Series Connected Grid Routers CGR1000 could allow an unauthenticated, remote attacker or an authenticated, local attacker to execute arbitrary code on an...

10CVSS9.8AI score0.04646EPSS
Exploits0References1
OSV
OSV
added 2020/06/03 6:15 p.m.4 views

CVE-2020-3258

Multiple vulnerabilities in Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers Industrial ISRs and Cisco 1000 Series Connected Grid Routers CGR1000 could allow an unauthenticated, remote attacker or an authenticated, local attacker to execute arbitrary code on an...

9.8CVSS6.2AI score0.04646EPSS
Exploits0References1
OSV
OSV
added 2020/06/03 6:15 p.m.6 views

CVE-2020-3234

A vulnerability in the virtual console authentication of Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers Industrial ISRs and Cisco 1000 Series Connected Grid Routers CGR1000 could allow an authenticated but low-privileged, local attacker to log in to the Virtual...

8.8CVSS7.2AI score0.00337EPSS
Exploits0References1
OSV
OSV
added 2020/06/03 6:15 p.m.8 views

CVE-2020-3198

Multiple vulnerabilities in Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers Industrial ISRs and Cisco 1000 Series Connected Grid Routers CGR1000 could allow an unauthenticated, remote attacker or an authenticated, local attacker to execute arbitrary code on an...

9.8CVSS7.6AI score0.04471EPSS
Exploits0References1
Prion
Prion
added 2020/06/03 6:15 p.m.18 views

Information disclosure

Multiple vulnerabilities in Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers Industrial ISRs and Cisco 1000 Series Connected Grid Routers CGR1000 could allow an unauthenticated, remote attacker or an authenticated, local attacker to execute arbitrary code on an...

10CVSS9.5AI score0.04471EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/06/03 5:56 p.m.69 views

CVE-2020-3258

Cisco IOS Software CVE-2020-3258 affects Cisco 809/829 Industrial ISRs and CGR1000; a vulnerability in a diagnostic test CLI command can modify run-time memory, enabling an unauthenticated remote attacker or an authenticated local attacker to execute arbitrary code or cause a crash/reload. Exploi...

10CVSS9.8AI score0.04646EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/06/03 5:55 p.m.64 views

CVE-2020-3234

The CVE-2020-3234 issue affects Cisco IOS Software for Cisco 809/829 Industrial ISRs and CGR1000 devices, where the Virtual Device Server (VDS) authentication uses hard-coded/default credentials. A local, authenticated, low-privilege attacker can log in to VDS via the device’s virtual console and...

8.8CVSS8.5AI score0.00337EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/06/03 5:40 p.m.64 views

CVE-2020-3210

CVE-2020-3210 affects Cisco IOS Software on Cisco 809/829 Industrial ISRs and CGR1000, where the CLI parsers for VDS-related commands fail to validate input. An authenticated local attacker with privilege level 15 can inject malicious input into VDS CLI arguments, gaining arbitrary commands execu...

7.2CVSS6.8AI score0.00426EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/06/03 5:40 p.m.54 views

CVE-2020-3208

Cisco IOS Software for Cisco 809 and 829 Industrial ISRs is affected by an image verification bypass. The issue stems from insufficient access restrictions around the image verification code, allowing an authenticated attacker with valid credentials at privilege level 15 to log into the VDS and d...

7.2CVSS6.4AI score0.00322EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/06/03 5:40 p.m.56 views

CVE-2020-3205

CVE-2020-3205 — Cisco IOS inter-VM channel injection involves Cisco IOS Software on Cisco 809/829 Industrial ISRs and CGR1000, where insufficient validation of signaling packets to the Virtual Device Server (VDS) allows an unauthenticated, adjacent attacker to execute arbitrary shell commands wit...

8.8CVSS8.9AI score0.0095EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2020/06/03 4:0 p.m.30 views

Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers Image Verification Bypass Vulnerability

A vulnerability in the image verification feature of Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers Industrial ISRs could allow an authenticated, local attacker to boot a malicious software image on an affected device. The vulnerability is due to insufficient acce...

6.7CVSS3.1AI score0.00322EPSS
Exploits0References1
Cisco
Cisco
added 2020/06/03 4:0 p.m.25 views

Cisco IOS Software for Cisco Industrial Routers Virtual Device Server Static Credentials Vulnerability

A vulnerability in the virtual console authentication of Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers Industrial ISRs and Cisco 1000 Series Connected Grid Routers CGR1000 could allow an authenticated but low-privileged, local attacker to log in to the Virtual...

8.8CVSS8.6AI score0.00337EPSS
Exploits0References1
Prion
Prion
added 2018/10/05 2:29 p.m.15 views

Design/Logic Flaw

A vulnerability in the embedded test subsystem of Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers could allow an authenticated, local attacker to write arbitrary values to arbitrary locations in the memory space of an affected device. The vulnerability is due to the...

7.2CVSS6.7AI score0.00327EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2018/10/05 2:0 p.m.79 views

CVE-2018-15376

CVE-2018-15376 affects Cisco IOS Software on Cisco 800 Series Industrial Integrated Services Routers. The flaw resides in the embedded test subsystem and allows an authenticated, local attacker to write arbitrary values to arbitrary memory locations by using certain test commands intended for int...

7.2CVSS6.6AI score0.00327EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2018/10/05 2:0 p.m.9 views

CVE-2018-15376 Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers Arbitrary Memory Write Vulnerabilities

A vulnerability in the embedded test subsystem of Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers could allow an authenticated, local attacker to write arbitrary values to arbitrary locations in the memory space of an affected device. The vulnerability is due to the...

7AI score0.00327EPSS
Exploits0References1
CVE
CVE
added 2018/10/05 2:0 p.m.72 views

CVE-2018-15375

CVE-2018-15375 affects Cisco IOS Software on Cisco 800 Series Industrial Integrated Services Routers. The vulnerability lies in the embedded test subsystem: presence of test commands intended for internal development builds allows an authenticated, local attacker to write arbitrary values to arbi...

7.2CVSS6.6AI score0.00327EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2017/03/22 7:59 p.m.21 views

CVE-2017-3853

A vulnerability in the Data-in-Motion DMo process installed with the Cisco IOx application environment could allow an unauthenticated, remote attacker to cause a stack overflow that could allow remote code execution with root privileges in the virtual instance running on an affected device. The...

10CVSS9.9AI score0.08711EPSS
Exploits0References3
Rows per page
Query Builder