The vulnerability lies in the implementation of the SIP protocol and the NAT function of the Application Layer Gateway (ALG) of the Cisco IOS XE operating system. This allows a attacker to trigger a reboot of the vulnerable device.

The vulnerability of the SIP protocol implementation and the NAT function of the Application Layer Gateway ALG on the Cisco IOS XE operating system is related to errors in processing SIP packets. Exploiting this vulnerability allows a malicious actor to trigger a restart of the vulnerable device ...

The vulnerability of the Application Layer Gateway (ALG) and the ZBFW network interface of the Cisco IOS XE operating system, which allows a attacker to trigger a reboot of the vulnerable device

The vulnerability of the Application Layer Gateway ALG and the ZBFW network firewall of the Cisco IOS XE operating system exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to trigger a reboot of the vulnerable device...

The vulnerability of the TLS protocol implementation in the software platform of IOx network devices from Cisco Systems Inc. allows a attacker to cause a service failure.

The vulnerability of the TLS protocol implementation in the IOx software platform of Cisco Systems Inc. exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures by sending specially crafted TLS packets to the IOx web...

The vulnerability of the Layer 2 Traceroute tool for Cisco IOS XE and Cisco IOS operating systems allows a hacker to create a complete L2 topology of a vulnerable network.

The vulnerability of the Layer 2 Traceroute tool for Cisco IOS XE and Cisco IOS operating systems is related to the lack of authentication. Exploiting this vulnerability allows a malicious actor to remotely construct a complete L2 topology of the vulnerable network...

CVE-2019-12677

A vulnerability in the Secure Sockets Layer SSL VPN feature of Cisco Adaptive Security Appliance ASA Software could allow an authenticated, remote attacker to cause a denial of service DoS condition that prevents the creation of new SSL/Transport Layer Security TLS connections to an affected...

PT-2019-3523 · Cisco · Cisco Asa

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA Software affected versions not specified Description: A vulnerability in the Secure Sockets Layer SSL VPN feature could allow an authenticated, remote attacker to cause a denial of service DoS condition...

USN-4094-1: Linux kernel vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Description It was discovered that the alarmtimer implementation in the Linux kernel contained an integer overflow vulnerability. A local attacker could use this to cause a denial of service. CVE-2018-13053 Wen Xu...

CVE-2019-11755

A crafted S/MIME message consisting of an inner encryption layer and an outer SignedData layer was shown as having a valid digital signature, although the signer might have had no access to the contents of the encrypted message, and might have stripped a different signature from the encrypted...

Mozilla Thunderbird < 68.1.1

The version of Thunderbird installed on the remote Windows host is prior to 68.1.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2019-32 advisory. - A crafted S/MIME message consisting of an inner encryption layer and an outer SignedData layer was shown as having a valid...

Cisco IOS XE NAT SIP ALG Denial of Service Vulnerability

Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. A denial of service vulnerability exists in the Network Address Translation NAT Session Initiation Protocol SIP Application Layer Gateway ALG of Cisco IOS XE. The vulnerability...

CVE-2019-12653

A vulnerability in the Raw Socket Transport feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service DoS condition. The vulnerability is due to improper parsing of Raw Socket Transport payloads. An...

Race condition

A vulnerability in the Raw Socket Transport feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service DoS condition. The vulnerability is due to improper parsing of Raw Socket Transport payloads. An...

Buffer overflow

A vulnerability in the FTP application layer gateway ALG functionality used by Network Address Translation NAT, NAT IPv6 to IPv4 NAT64, and the Zone-Based Policy Firewall ZBFW in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The...

CVE-2019-12646

A vulnerability in the Network Address Translation NAT Session Initiation Protocol SIP Application Layer Gateway ALG of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to improper processing of transient SIP...

Design/Logic Flaw

A vulnerability in the Network Address Translation NAT Session Initiation Protocol SIP Application Layer Gateway ALG of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to improper processing of transient SIP...

CVE-2019-6652

In BIG-IQ 6.0.0-6.1.0, services for stats do not require authentication nor do they implement any form of Transport Layer Security TLS...

containers/image: not enforcing TLS when sending username+password credentials to token servers leading to credential disclosure

The containers/image library used by the container tools Podman, Buildah, and Skopeo in Red Hat Enterprise Linux version 8 and CRI-O in OpenShift Container Platform, does not enforce TLS connections to the container registry authorization service. An attacker could use this vulnerability to launc...

[SECURITY] Fedora 29 Update: SDL2_image-2.0.5-2.fc29

Simple DirectMedia Layer SDL is a cross-platform multimedia library designed to provide fast access to the graphics frame buffer and audio device. This package contains a simple library for loading images of various formats BMP, PPM, PCX, GIF, JPEG, PNG as SDL surfaces...

PT-2019-3316 · Cisco · Cisco Ios Xe

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software affected versions not specified Description: A vulnerability in the Network Address Translation NAT Session Initiation Protocol SIP Application Layer Gateway ALG could allow an unauthenticated, remote attacker to cause a...

PT-2019-18234 · F5 · F5 Big-Iq

Name of the Vulnerable Software and Affected Versions: F5 BIG-IQ versions 6.0.0 through 6.1.0 Description: The issue concerns a lack of authentication and Transport Layer Security TLS in services for statistics. This means that these services can be accessed without proper verification and...