Lucene search
K
CiscoMost viewed

5226 matches found

Cisco
Cisco
added 2014/05/27 3:24 p.m.30 views

Cisco IOS XE Software PPPoE Denial of Service Vulnerability

A vulnerability in the PPP over Ethernet PPPoE processing code of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a reload of the affected device, which could lead to a denial of service DoS condition. The vulnerability is due to improper processing of certain...

6.1CVSS6.3AI score0.01207EPSS
Exploits0References1
Cisco
Cisco
added 2014/05/19 6:50 p.m.30 views

Cisco Unified Web and E-mail Interaction Manager XML External Entities Vulnerability

A vulnerability in the /system/egain/chat/entrypoint script of Cisco Unified Web and E-mail Interaction Manager could allow an unauthenticated, remote attacker to inject malicious XML entities. The vulnerability is due to inadequate input validation. An attacker could exploit this vulnerability b...

4.3CVSS6.5AI score0.01249EPSS
Exploits0References1
Cisco
Cisco
added 2014/05/06 7:14 p.m.30 views

Cisco Nexus 1000V Access Control List Bypass Vulnerability

A vulnerability in Cisco Nexus 1000V switches could allow an unauthenticated, remote attacker to bypass deny statements in access control lists ACLs with certain types of Internet Group Management Protocol version 2 IGMPv2 or IGMP version 3 IGMPv3 traffic. IGMP version 1 IGMPv1 is not affected. T...

5CVSS6.6AI score0.01209EPSS
Exploits0References1
Cisco
Cisco
added 2014/03/05 4:0 p.m.30 views

Cisco Small Business Router Password Disclosure Vulnerability

A vulnerability in the web management interface of the Cisco RV110W Wireless-N VPN Firewall, the Cisco RV215W Wireless-N VPN Router, and the Cisco CVR100W Wireless-N VPN Router could allow an unauthenticated, remote attacker to gain administrative-level access to the web management interface of t...

10CVSS7.9AI score0.1043EPSS
Exploits3References1
Cisco
Cisco
added 2014/02/19 4:0 p.m.30 views

Cisco UCS Director Default Credentials Vulnerability

A vulnerability in Cisco Unified Computing System UCS Director could allow an unauthenticated, remote attacker to take complete control of the affected device. The vulnerability is due to a default root user account created during installation. An attacker could exploit this vulnerability by...

9.3CVSS6.6AI score0.01844EPSS
Exploits1References1
Cisco
Cisco
added 2013/12/19 9:23 p.m.30 views

Cisco NX-OS Directory Traversal Vulnerability

A vulnerability in the Command Line Interface CLI of the Cisco NX-OS Software could allow an authenticated, local attacker to delete arbitrary files on the device. The vulnerability is due to improper filtering of user input. An attacker could exploit this vulnerability by leveraging the filesys...

4.6CVSS2.5AI score0.0047EPSS
Exploits0References1
Cisco
Cisco
added 2013/12/03 10:12 p.m.31 views

Cisco IOS XR Software SNMP Denial of Service Vulnerability

A vulnerability in the Simple Network Management Protocol SNMP module of Cisco IOS XR Software could allow an authenticated, remote attacker to cause a reload of the SNMP process on an affected device. The vulnerability is due to improper processing of SNMP requests for certain MIBs. An attacker...

4CVSS2.7AI score0.01232EPSS
Exploits0References1
Cisco
Cisco
added 2013/10/09 6:36 p.m.30 views

Cisco Identity Services Engine Troubleshooting Interface Cross-Site Scripting Vulnerability

A vulnerability in the troubleshooting page of Cisco Identity Services Engine ISE could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against the user of the web interface of the affected system. The vulnerability is due to insufficient input validation of...

4.3CVSS1.9AI score0.01488EPSS
Exploits0References1
Cisco
Cisco
added 2013/09/25 4:0 p.m.30 views

Cisco IOS Software Network Address Translation Vulnerabilities

The Cisco IOS Software implementation of the network address translation NAT feature contains three vulnerabilities when translating IP packets that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. Cisco has released software updates that address these...

7.8CVSS6.7AI score0.01887EPSS
Exploits0References1
Cisco
Cisco
added 2013/09/18 4:16 p.m.30 views

Cisco Unified Computing System Software KVM Client Certificate Validation Vulnerability

A vulnerability in Cisco Unified Computing System software KVM client could allow an unauthenticated, remote attacker to perform a man-in-the-middle attack. The vulnerability is due to improper certificate validation by the KVM client. An attacker could exploit this vulnerability by intercepting ...

4.3CVSS1.8AI score0.00597EPSS
Exploits0References1
Cisco
Cisco
added 2013/09/18 2:0 p.m.30 views

Cisco Unified Computing System Serial over LAN Static Private Key Vulnerability

A vulnerability in the Cisco Unified Computing System Serial over LAN SoL implementation could allow an unauthenticated, remote attacker to perform a man-in-the-middle MITM attack. The vulnerability occurs because the Board Management Controller BMC uses a hard-coded private key. An attacker coul...

4.3CVSS1.6AI score0.01217EPSS
Exploits0References1
Cisco
Cisco
added 2013/09/13 6:6 p.m.30 views

Cisco Unified MeetingPlace Application Server Cross-Site Scripting Vulnerability

A vulnerability in the web framework of Cisco Unified MeetingPlace Application Server could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web interface on the affected system. The vulnerability is due to insufficient input validation ...

4.3CVSS1.4AI score0.01351EPSS
Exploits0References1
Cisco
Cisco
added 2013/09/04 7:56 p.m.30 views

Cisco Secure Access Control System Malformed Packet Denial of Service Vulnerability

A vulnerability in the TACACS+ socket read function of Cisco Secure ACS versions 5.x could allow an unauthenticated, remote attacker to cause a runtime process to crash. The vulnerability is due to improper processing of read requests on the TACACS+ socket. An attacker could exploit this...

6.4CVSS1.8AI score0.0186EPSS
Exploits0References1
Cisco
Cisco
added 2013/08/21 4:0 p.m.30 views

Multiple Vulnerabilities in Cisco Unified Communications Manager

Cisco Unified Communications Manager Unified CM contains multiple vulnerabilities that could allow an unauthenticated, remote attacker to modify data, execute arbitrary commands, or cause a denial of service DoS condition. Cisco has released software updates that address these vulnerabilities. Th...

8.5CVSS7.2AI score0.03017EPSS
Exploits0References1
Cisco
Cisco
added 2013/07/15 6:51 p.m.30 views

Cisco Secure Access Control System Administration Page Cross-Site Scripting Vulnerability

A vulnerability in the Administration pages of Cisco Access Control System ACS could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web interface of the affected system. The vulnerability is due to insufficient input validation of a...

4.3CVSS2.8AI score0.00931EPSS
Exploits0References1
Cisco
Cisco
added 2013/07/09 9:36 p.m.30 views

Cisco Nexus 1000V License Installation Command Injection Vulnerability

A vulnerability in the license installation module of Cisco Nexus 1000V could allow an authenticated, local attacker to execute arbitrary shell commands. The vulnerability is due to a failure of the install license command to properly validate user-supplied input. An attacker could exploit this...

6.6CVSS3.5AI score0.00366EPSS
Exploits0References1
Cisco
Cisco
added 2013/02/27 4:0 p.m.30 views

Cisco Prime Central for Hosted Collaboration Solution Assurance Excessive CPU Utilization Vulnerability

Cisco Prime Central for Hosted Collaboration Solution HCS Assurance contains a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. Exploitation of this vulnerability could interrupt the monitoring of voice services. Cisco has released...

7.1CVSS6.6AI score0.01173EPSS
Exploits0References1
Cisco
Cisco
added 2013/01/23 4:31 p.m.30 views

Cisco Wireless LAN Controllers Wireless Intrusion Prevention System Denial of Service Vulnerability

Cisco Wireless LAN Controllers WLC Wireless Intrusion Prevention System wIPS contains a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. The vulnerability is due to improper handling of crafted IP packets by the wIPS software component...

7.8CVSS2.7AI score0.01819EPSS
Exploits0References1
Cisco
Cisco
added 2012/09/26 4:0 p.m.30 views

Cisco IOS Software Intrusion Prevention System Denial of Service Vulnerability

Cisco IOS Software contains a vulnerability in the Intrusion Prevention System IPS feature that could allow an unauthenticated, remote attacker to cause a reload of an affected device if specific Cisco IOS IPS configurations exist. Cisco has released software updates that address this...

7.8CVSS6.6AI score0.01548EPSS
Exploits0References1
Cisco
Cisco
added 2012/09/26 4:0 p.m.30 views

Cisco IOS Software Malformed Border Gateway Protocol Attribute Vulnerability

Cisco IOS Software contains a vulnerability in the Border Gateway Protocol BGP routing protocol feature. The vulnerability can be triggered when the router receives a malformed attribute from a peer on an existing BGP session. Successful exploitation of this vulnerability can cause all BGP...

7.1CVSS6.4AI score0.02317EPSS
Exploits0References1
Cisco
Cisco
added 2012/09/26 4:0 p.m.30 views

Cisco Unified Communications Manager Session Initiation Protocol Denial of Service Vulnerability

Cisco Unified Communications Manager contains a vulnerability in its Session Initiation Protocol SIP implementation that could allow an unauthenticated, remote attacker to cause a critical service to fail, which could interrupt voice services. Affected devices must be configured to process SIP...

7.8CVSS6.5AI score0.03203EPSS
Exploits0References1
Cisco
Cisco
added 2012/07/11 4:0 p.m.30 views

Multiple Vulnerabilities in Cisco TelePresence Manager

Cisco TelePresence Manager contains the following vulnerabilities: Cisco TelePresence Malformed IP Packets Denial of Service Vulnerability Cisco TelePresence Cisco Discovery Protocol Remote Code Execution Vulnerability Exploitation of the Cisco TelePresence Malformed IP Packets Denial of Service...

8.3CVSS7.2AI score
Exploits0References1
Cisco
Cisco
added 2012/02/29 4:0 p.m.30 views

Multiple Vulnerabilities in Cisco Unity Connection

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

9CVSS6AI score0.02304EPSS
Exploits1References1
Cisco
Cisco
added 2011/10/05 4:0 p.m.30 views

Directory Traversal Vulnerability in Cisco Network Admission Control Manager

Cisco Network Admission Control NAC Manager contains a directory traversal vulnerability that may allow an unauthenticated attacker to obtain system information. There are no workarounds to mitigate this vulnerability. Cisco has released software updates that address this vulnerability. This...

7.8CVSS6.2AI score0.21593EPSS
Exploits2References1
Cisco
Cisco
added 2011/02/23 4:0 p.m.30 views

Multiple Vulnerabilities in Cisco TelePresence Endpoint Devices

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

10CVSS5.8AI score0.03346EPSS
Exploits0References1
Cisco
Cisco
added 2011/02/01 4:0 p.m.30 views

Multiple Cisco WebEx Player Vulnerabilities

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

9.3CVSS5.9AI score0.05539EPSS
Exploits0References1
Cisco
Cisco
added 2010/09/22 4:0 p.m.30 views

Cisco Unified Communications Manager Session Initiation Protocol Denial of Service Vulnerabilities

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

6AI score
Exploits0References1
Cisco
Cisco
added 2010/09/08 4:0 p.m.31 views

Multiple Vulnerabilities in Cisco Wireless LAN Controllers

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

9CVSS5.9AI score
Exploits0References1
Cisco
Cisco
added 2010/08/25 4:0 p.m.30 views

Cisco Unified Communications Manager Denial of Service Vulnerabilities

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

7.8CVSS6.1AI score
Exploits0References1
Cisco
Cisco
added 2010/07/02 2:15 p.m.30 views

Cisco CSS Content Services Switch and ACE Application Control Engine HTTP SSL Header Spoofing Vulnerability

Cisco CSS Content Services Switch CSS, SSL Services Module SSLM, and ACE Application Control Engine ACE contain a vulnerability that could allow an authenticated, remote attacker to insert spoofed SSL headers into HTTP requests. The vulnerability exists because the affected products weakly enforc...

3.5CVSS6.3AI score0.01686EPSS
Exploits2References1
Cisco
Cisco
added 2010/03/24 12:0 a.m.30 views

Cisco IOS Software Multiprotocol Label Switching Packet Vulnerability

A device running Cisco IOS® Software, Cisco IOS XE Software, or Cisco IOS XR Software is vulnerable to a remote denial of service DoS condition if it is configured for Multiprotocol Label Switching MPLS and has support for Label Distribution Protocol LDP. A crafted LDP UDP packet can cause an...

7.8CVSS6.7AI score0.0297EPSS
Exploits0References1
Cisco
Cisco
added 2010/02/10 4:0 p.m.30 views

Multiple Vulnerabilities in Cisco IronPort Encryption Appliance

Cisco IronPort Encryption Appliance devices contain two vulnerabilities that allow remote, unauthenticated access to any file on the device and one vulnerability that allows remote, unauthenticated users to execute arbitrary code with elevated privileges. There are workarounds available to mitiga...

10CVSS6.8AI score0.04387EPSS
Exploits1References1
Cisco
Cisco
added 2009/10/14 4:0 p.m.30 views

Cisco Unified Presence Denial of Service Vulnerabilities

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

7.8CVSS6.3AI score0.03764EPSS
Exploits0References1
Cisco
Cisco
added 2009/09/23 4:0 p.m.30 views

Cisco IOS Software Authentication Proxy Vulnerability

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

7.1CVSS6.3AI score0.0247EPSS
Exploits0References1
Cisco
Cisco
added 2009/08/26 4:0 p.m.30 views

Cisco Unified Communications Manager Denial of Service Vulnerabilities

Cisco Unified Communications Manager formerly CallManager contains multiple denial of service DoS vulnerabilities that if exploited could cause an interruption to voice services. The Session Initiation Protocol SIP and Skinny Client Control Protocol SCCP services are affected by these...

7.8CVSS6.4AI score0.03975EPSS
Exploits0References1
Cisco
Cisco
added 2009/06/24 4:8 p.m.30 views

Cisco ASA Adaptive Security Appliance Clientless SSL VPN DOM Cross-Site Scripting Vulnerability

Cisco ASA Adaptive Security Appliance Software versions prior to 8.0.434, 8.1.225, and 8.2.13 that are configured to accept Clientless SSL VPN connections are affected by a cross-site scripting vulnerability. Versions 7.x are not affected. The vulnerability is due to insufficient restrictions on...

4.3CVSS6.1AI score0.08828EPSS
Exploits2References1
Cisco
Cisco
added 2008/02/13 4:0 p.m.30 views

Cisco Unified IP Phone Overflow and Denial of Service Vulnerabilities

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

10CVSS5.9AI score
Exploits0References1
Cisco
Cisco
added 2006/09/13 8:9 p.m.30 views

Cisco IOS VTP Integer Wrap Denial of Service Vulnerability

Cisco IOS and Cisco Catalyst OS contain an integer overflow vulnerability that could allow an authenticated, remote attacker to cause affected devices to stop processing configuration changes, possibly resulting in a denial of service DoS condition. This vulnerability exists due to an integer...

7.8CVSS7AI score0.04752EPSS
Exploits0References1
Cisco
Cisco
added 2005/07/29 8:0 a.m.30 views

IPv6 Crafted Packet Vulnerability

Cisco Internetwork Operating System IOS® Software is vulnerable to a Denial of Service DoS and potentially an arbitrary code execution attack from a specifically crafted IPv6 packet. The packet must be sent from a local network segment. Only devices that have been explicitly configured to process...

2.1CVSS7.2AI score0.01409EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2005/01/26 4:0 p.m.30 views

Multiple Crafted IPv6 Packets Cause Reload

...

5CVSS2.6AI score0.03685EPSS
Exploits0References1
Cisco
Cisco
added 2005/01/26 4:0 p.m.30 views

Crafted Packet Causes Reload on Cisco Routers

...

6.1CVSS3.6AI score0.01701EPSS
Exploits0References1
Cisco
Cisco
added 2005/01/19 3:0 p.m.30 views

Vulnerability in Cisco IOS Embedded Call Processing Solutions

Cisco Internetwork Operating System IOS® Software release trains 12.1YD, 12.2T, 12.3 and 12.3T, when configured for the Cisco IOS Telephony Service ITS, Cisco CallManager Express CME or Survivable Remote Site Telephony SRST may contain a vulnerability in processing certain malformed control...

5CVSS6.5AI score0.02588EPSS
Exploits1References1
Cisco
Cisco
added 2004/11/10 5:0 p.m.30 views

Cisco IOS DHCP Blocked Interface Denial-of-Service

...

5CVSS1.4AI score0.02342EPSS
Exploits0References1
Cisco
Cisco
added 2025/05/07 4:0 p.m.29 views

Cisco IOS XE Software Privilege Escalation Vulnerabilities

Multiple vulnerabilities in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with privilege level 15 to elevate privileges to root on the underlying operating system of an affected device. These vulnerabilities are due to insufficient input validation when processing...

6.7CVSS6.1AI score
Exploits0References1
Cisco
Cisco
added 2024/10/02 4:0 p.m.29 views

Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Privilege Escalation and Remote Command Execution Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an authenticated, remote attacker to elevate privileges and execute arbitrary commands on the underlying operating system of an affected...

8.8CVSS8.4AI score0.0063EPSS
Exploits0References1
Cisco
Cisco
added 2024/03/06 4:0 p.m.29 views

Cisco Small Business 100, 300, and 500 Series Wireless Access Points Command Injection and Buffer Overflow Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Small Business 100, 300, and 500 Series Wireless Access Points APs could allow an authenticated, remote attacker to perform command injection and buffer overflow attacks against an affected device. In order to exploit these...

6.5CVSS7.1AI score0.00997EPSS
Exploits0References1
Cisco
Cisco
added 2024/02/28 4:0 p.m.29 views

Cisco NX-OS Software External Border Gateway Protocol Denial of Service Vulnerability

A vulnerability in the External Border Gateway Protocol eBGP implementation of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability exists because eBGP traffic is mapped to a shared hardware...

8.6CVSS8.4AI score0.00709EPSS
Exploits0References1
Cisco
Cisco
added 2024/01/10 4:0 p.m.29 views

Cisco WAP371 Wireless Access Point Command Injection Vulnerability

A vulnerability in the web-based management interface of the Cisco WAP371 Wireless-AC/N Dual Radio Access Point AP with Single Point Setup could allow an authenticated, remote attacker to perform command injection attacks against an affected device. This vulnerability is due to improper validatio...

6.5CVSS7.6AI score0.01358EPSS
Exploits0References1
Cisco
Cisco
added 2024/01/10 4:0 p.m.29 views

Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Vulnerabilities

Multiple vulnerabilities in Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure could allow an attacker to conduct cross-site scripting XSS attacks, execute arbitrary commands, perform SQL injection attacks, or gain elevated privileges on an affected system. Cisco has...

6.5CVSS6.7AI score0.00695EPSS
Exploits0References1
Cisco
Cisco
added 2023/11/01 4:0 p.m.29 views

Cisco Firepower Threat Defense Software and Firepower Management Center Software Code Injection Vulnerability

A vulnerability in the inter-device communication mechanisms between devices that are running Cisco Firepower Threat Defense FTD Software and devices that are running Cisco Firepower Management FMC Software could allow an authenticated, local attacker to execute arbitrary commands with root...

8.2CVSS8.4AI score0.00234EPSS
Exploits0References1
Total number of security vulnerabilities5000