Ios Xe@16.3.9 Security Vulnerabilities and Issues — Page 2 of Ios Xe@16.3.9 CVE List

Lucene search

CiscoIos Xe16.3.9

64 matches found

CVE•added 2020/06/03 6:15 p.m.•48 views

CVE-2020-3203

A vulnerability in the locally significant certificate (LSC) provisioning feature of Cisco Catalyst 9800 Series Wireless Controllers that are running Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a memory leak that could lead to a denial of service (DoS) condition. ...

8.6CVSS8.5AI score0.00756EPSS

CVE•added 2025/05/07 6:15 p.m.•47 views

CVE-2025-20197

A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with privilege level 15 to elevate privileges to root on the underlying operating system of an affected device. This vulnerability is due to insufficient input validation when processing specific config...

8.2CVSS6.6AI score0.00018EPSS

CVE•added 2024/09/25 5:15 p.m.•46 views

CVE-2024-20510

A vulnerability in the Central Web Authentication (CWA) feature of Cisco IOS XE Software for Wireless Controllers could allow an unauthenticated, adjacent attacker to bypass the pre-authentication access control list (ACL), which could allow access to network resources before user authentication. T...

9.3CVSS7.2AI score0.00093EPSS

CVE•added 2020/09/24 6:15 p.m.•44 views

CVE-2020-3400

A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to utilize parts of the web UI for which they are not authorized.The vulnerability is due to insufficient authorization of web UI access requests. An attacker could exploit this vulnerabilit...

8.8CVSS8.6AI score0.00202EPSS

CVE•added 2025/05/07 6:15 p.m.•43 views

CVE-2025-20196

A vulnerability in the Cisco IOx application hosting environment of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the Cisco IOx application hosting environment to stop responding, resulting in a denial of service (DoS) condition. This vulnerab...

5.3CVSS5.4AI score0.00062EPSS

CVE•added 2025/05/07 6:15 p.m.•42 views

CVE-2025-20199

8.2CVSS4.8AI score0.00018EPSS

CVE•added 2025/02/05 5:15 p.m.•41 views

CVE-2025-20171

A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper error handling when parsing SNMP requests. An attacker could exploit this vulnera...

7.7CVSS7AI score0.00076EPSS

CVE•added 2025/02/05 5:15 p.m.•40 views

CVE-2025-20172

A vulnerability in the SNMP subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an authenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper error handling when parsing SNMP requests. An attacker co...

7.7CVSS7.1AI score0.00076EPSS

CVE•added 2025/02/05 5:15 p.m.•40 views

CVE-2025-20174

7.7CVSS7.5AI score0.00185EPSS

CVE•added 2025/05/07 6:15 p.m.•40 views

CVE-2025-20198

8.2CVSS4.8AI score0.00018EPSS

CVE•added 2025/02/05 5:15 p.m.•38 views

CVE-2025-20173

7.7CVSS7.5AI score0.00076EPSS

CVE•added 2025/02/05 5:15 p.m.•37 views

CVE-2025-20175

7.7CVSS7.2AI score0.00185EPSS

CVE•added 2025/05/07 6:15 p.m.•37 views

CVE-2025-20200

8.2CVSS6.6AI score0.00018EPSS

CVE•added 2025/05/07 6:15 p.m.•35 views

CVE-2025-20195

A vulnerability in the web-based management interface of Cisco IOS XE Software could allow an unauthenticated, remote attacker to perform a CSRF attack and execute commands on the CLI of an affected device. This vulnerability is due to insufficient CSRF protections for the web-based management inte...

4.3CVSS4.9AI score0.00056EPSS

Total number of security vulnerabilities64