CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Name of the Vulnerable Software and Affected Versions: Cisco Nexus 3000 Series Switches Cisco Nexus 9000 Series Switches Description: A vulnerability in the Protocol Independent Multicast Version 6 PIM6 feature could allow an authenticated, low-privileged, remote attacker to trigger a crash of th...

5CVSS6.6AI score0.0017EPSS

Exploits0References4

RedhatCVE•added 2025/05/09 6:8 p.m.•4 views

CVE-2025-20214

A vulnerability in the Network Configuration Access Control Module NACM of Cisco IOS XE Software could allow an authenticated, remote attacker to obtain unauthorized read access to configuration or operational data. This vulnerability exists because a subtle change in inner API call behavior caus...

4.3CVSS6.8AI score0.0022EPSS

Exploits0References1

NVD•added 2025/05/07 6:15 p.m.•9 views

CVE-2025-20214

4.3CVSS0.0022EPSS

Exploits0References1

Vulnrichment•added 2025/05/07 5:34 p.m.•7 views

CVE-2025-20214

4.3CVSS4.5AI score0.0022EPSS

Exploits0References1

Tenable Nessus•added 2024/03/28 12:0 a.m.•27 views

Cisco IOS XE Software NETCONF/RESTCONF IPv4 Access Control List Bypass (cisco-sa-dmi-acl-bypass-Xv8FO8Vz)

According to its self-reported version, Cisco IOS-XE Software is affected by a vulnerability. - A vulnerability in the data model interface DMI services of Cisco IOS XE Software could allow an unauthenticated, remote attacker to access resources that should have been protected by a configured IPv...

5.8CVSS5.6AI score0.00263EPSS

Exploits0References5

NVD•added 2024/03/27 5:15 p.m.•12 views

CVE-2024-20316

A vulnerability in the data model interface DMI services of Cisco IOS XE Software could allow an unauthenticated, remote attacker to access resources that should have been protected by a configured IPv4 access control list ACL. This vulnerability is due to improper handling of error conditions wh...

5.8CVSS5.8AI score0.00263EPSS

Exploits0References1

Cvelist•added 2024/03/27 4:49 p.m.•12 views

CVE-2024-20316

5.8CVSS6.1AI score0.00263EPSS

Exploits0References1

CVE•added 2024/03/27 4:49 p.m.•71 views

CVE-2024-20316

CVE-2024-20316 affects Cisco IOS XE Software with the Data Model Interface (DMI) when an IPv4 ACL is updated via NETCONF/RESTCONF. The issue stems from improper error handling that can reorder ACEs in an updated ACL, potentially allowing access to resources that should be protected. Concrete deta...

5.8CVSS7AI score0.00263EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/03/27 4:49 p.m.•17 views

CVE-2024-20316

5.8CVSS7.2AI score0.00263EPSS

Exploits0References1

Cisco•added 2024/03/27 4:0 p.m.•29 views

Cisco IOS XE Software NETCONF/RESTCONF IPv4 Access Control List Bypass Vulnerability

5.8CVSS5.8AI score0.00263EPSS

Exploits0References1

Positive Technologies•added 2024/03/27 12:0 a.m.•2 views

PT-2024-2551 · Cisco · Cisco Ios Xe

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software affected versions not specified Description: The issue is related to improper handling of error conditions in the Data Model Interface DMI services of Cisco IOS XE Software when a device administrator updates an IPv4...

5.8CVSS6.7AI score0.00263EPSS

Exploits0References5

Cisco•added 2023/01/11 4:0 p.m.•23 views

Cisco Network Services Orchestrator Path Traversal Vulnerability

A vulnerability in the RESTCONF and NETCONF services of Cisco Network Services Orchestrator NSO could allow an authenticated, remote attacker to cause a denial of service DoS on an affected system that is running as the root user. To exploit this vulnerability, the attacker must be a member of th...

5.5CVSS5.7AI score0.01504EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by