EUVD-2023-24405

Malicious code in bioql PyPI...

Cisco IOS XE Software Unified Threat Defense Snort Intrusion Prevention System Engine for Security Policy Bypass DoS (cisco-sa-utd-snort3-dos-bypas-b4OUEwxD)

According to its self-reported version, Cisco IOS-XE Software is affected by a vulnerability. - A vulnerability in Cisco Unified Threat Defense UTD Snort Intrusion Prevention System IPS Engine for Cisco IOS XE Software could allow an unauthenticated, remote attacker to bypass configured security...

CVE-2024-20455

CVE-2024-20455 affects Cisco IOS XE Software in controller mode via the Unified Threat Defense (UTD) component. The issue arises because UTD mishandles certain packets as they egress an SD-WAN IPsec tunnel, allowing unauthenticated remote attackers to trigger a device reload and a DoS condition. ...

Cisco Catalyst SD-WAN Routers Denial of Service Vulnerability

A vulnerability in the process that classifies traffic that is going to the Unified Threat Defense UTD component of Cisco IOS XE Software in controller mode could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability exists...

CVE-2024-20306

A vulnerability in the Unified Threat Defense UTD configuration CLI of Cisco IOS XE Software could allow an authenticated, local attacker to execute arbitrary commands as root on the underlying host operating system. To exploit this vulnerability, an attacker must have level 15 privileges on the...

CVE-2023-20226

CVE-2023-20226 affects Cisco IOS XE Software, specifically the AppQoE and UTD components. The issue arises from mishandling a crafted packet stream sent to these applications, allowing an unauthenticated, remote attacker to trigger a device reload and DoS. Public details in connected documents co...

Cisco IOS XE Software Unified Threat Defense DoS (cisco-sa-snort-dos-s2R7W9UU)

According to its self-reported version, Cisco UTD Software is affected by a denial of service vulnerability. A denial of service DoS vulnerability exists in the way the Snort detection engine processes ICMP traffic. An unauthenticated, remote attacker can exploit this issue by sending a series of...

Cisco IOS XE Products Snort Application Detection Engine Policy Bypass (cisco-sa-snort-app-bypass-cSBYCATq)

According to its self-reported version, Cisco IOS XE is affected by a vulnerability in the UTD SNORT IPS detection engine due to a flaw in the detection algorithm. An unauthenticated, remote attacker can exploit this by sending crafted packets that would flow through an affected system. A...

Cisco Firepower Threat Defense Snort Application Detection Engine Policy Bypass (cisco-sa-snort-app-bypass-cSBYCATq)

According to its self-reported version, Cisco Firepower Threat Defense is affected by a vulnerability in the UTD SNORT IPS detection engine due to a flaw in the detection algorithm. An unauthenticated, remote attacker can exploit this by sending crafted packets that would flow through an affected...

Input validation

A vulnerability in Unified Threat Defense UTD in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to improper validation of IPv6 packets through the UTD feature. An attacker could exploit this vulnerability by...

CVE-2019-12657 Cisco IOS XE Software Unified Threat Defense Denial of Service Vulnerability

A vulnerability in Unified Threat Defense UTD in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to improper validation of IPv6 packets through the UTD feature. An attacker could exploit this vulnerability by...

CVE-2019-12657

CVE-2019-12657 affects Cisco IOS XE Software Unified Threat Defense (UTD). The vulnerability stems from improper validation of IPv6 packets processed by UTD, allowing an unauthenticated, remote attacker to cause the device to reload and experience a DoS. Affected platforms are Cisco IOS XE device...