Cisco IOS XE Software IPv6 VPN over MPLS DoS (cisco-sa-iosxe-6vpe-dos-tJBtf5Zv)

A vulnerability in the implementation of IPv6 VPN over MPLS 6VPE with Zone-Based Firewall ZBFW of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service condition on an affected device. This vulnerability is due to improper error handling of an IPv6...

Input validation

A vulnerability in the implementation of IPv6 VPN over MPLS 6VPE with Zone-Based Firewall ZBFW of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper error handling of an IP...

CVE-2022-20915 Cisco IOS XE Software IPv6 VPN over MPLS Denial of Service Vulnerability

A vulnerability in the implementation of IPv6 VPN over MPLS 6VPE with Zone-Based Firewall ZBFW of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper error handling of an IP...

Cisco IOS XE Software FTP Application Layer Gateway for NAT, NAT64, and ZBFW Denial of Service Vulnerability

A denial of service DoS vulnerability exists in Cisco IOS XE Software FTP Application Layer Gateway for NAT, NAT64, and ZBFW due to a buffer overflow that occurs when an affected device inspects certain FTP traffic. An unauthenticated, remote attacker can exploit this issue by performing a specif...

CVE-2019-12655 Cisco IOS XE Software FTP Application Layer Gateway for NAT, NAT64, and ZBFW Denial of Service Vulnerability

A vulnerability in the FTP application layer gateway ALG functionality used by Network Address Translation NAT, NAT IPv6 to IPv4 NAT64, and the Zone-Based Policy Firewall ZBFW in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The...

CVE-2019-12655 Cisco IOS XE Software FTP Application Layer Gateway for NAT, NAT64, and ZBFW Denial of Service Vulnerability

A vulnerability in the FTP application layer gateway ALG functionality used by Network Address Translation NAT, NAT IPv6 to IPv4 NAT64, and the Zone-Based Policy Firewall ZBFW in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The...

CVE-2019-12655

The CVE-2019-12655 issue affects Cisco IOS XE Software, specifically the FTP Application Layer Gateway (ALG) used with NAT, NAT64, and ZBFW. The vulnerability stems from a buffer overflow that occurs when the device inspects certain FTP traffic, enabling an unauthenticated, remote attacker to cau...

Cisco IOS XE Software FTP Application Layer Gateway for NAT, NAT64, and ZBFW Denial of Service Vulnerability

A vulnerability in the FTP application layer gateway ALG functionality used by Network Address Translation NAT, NAT IPv6 to IPv4 NAT64, and the Zone-Based Policy Firewall ZBFW in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The...

CVE-2014-2146

The Zone-Based Firewall ZBFW functionality in Cisco IOS, possibly 15.4 and earlier, and IOS XE, possibly 3.13 and earlier, mishandles zone checking for existing sessions, which allows remote attackers to bypass intended resource-access restrictions via spoofed traffic that matches one of these...

CVE-2013-5543

CVE-2013-5543 affects Cisco IOS XE on 1000 Series ASR routers. A vulnerability in the Zone-Based Firewall (ZBFW) handling allows remote attackers to trigger a device reload via malformed ICMP error packets bound to an active TCP/UDP session (Bug CSCtt26470). Affected versions are IOS XE 3.4 prior...

Cisco IOS Update Patches Eight Vulnerabilities

Telecommunications company Cisco this week is warning customers and those running their software of eight separate vulnerabilities it has patched in its internetwork operating system IOS infrastructure product. Cisco’s Product Security Incident Response Team PSIRT released the advisories yesterda...

Cisco IOS Software Zone-Based Firewall and Content Filtering Vulnerability

A vulnerability in the Zone-Based Firewall ZBFW component of Cisco IOS Software could allow an unauthenticated, remote attacker to cause an affected device to hang or reload. The vulnerability is due to improper processing of specific HTTP packets when the device is configured for either Cisco IO...

CVE-2011-3273

Memory leak in Cisco IOS 15.0 through 15.1, when IPS or Zone-Based Firewall aka ZBFW is configured, allows remote attackers to cause a denial of service memory consumption or device crash via vectors that trigger many session creation flows, aka Bug ID CSCti79848...

CVE-2011-3273

CVE-2011-3273 refers to memory leaks in Cisco IOS Software when IPS or Zone-Based Firewall is configured, leading to memory exhaustion or device crash under high session-creation rates or processing specially crafted HTTP packets. The vulnerability affects Cisco IOS IPS/ZBFW configurations (notab...