Ios Xe@17.1.1a Security Vulnerabilities and Issues — Ios Xe@17.1.1a CVE List

Lucene search

CiscoIos Xe17.1.1a

16 matches found

CVE•added 2022/04/15 3:15 p.m.•949 views

CVE-2022-20693

A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to perform an injection attack against an affected device. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending crafted input t...

9CVSS5.8AI score0.01709EPSS

CVE•added 2022/04/15 3:15 p.m.•136 views

CVE-2022-20681

A vulnerability in the CLI of Cisco IOS XE Software for Cisco Catalyst 9000 Family Switches and Cisco Catalyst 9000 Family Wireless Controllers could allow an authenticated, local attacker to elevate privileges to level 15 on an affected device. This vulnerability is due to insufficient validation ...

7.8CVSS7.8AI score0.00111EPSS

CVE•added 2022/04/15 3:15 p.m.•121 views

CVE-2022-20679

A vulnerability in the IPSec decryption routine of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. This vulnerability is due to buffer exhaustion that occurs while traffic on a configured ...

7.7CVSS7.2AI score0.00711EPSS

CVE•added 2022/04/15 3:15 p.m.•107 views

CVE-2022-20682

A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This v...

8.6CVSS8.4AI score0.00424EPSS

CVE•added 2022/04/15 3:15 p.m.•104 views

CVE-2022-20724

Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying host operating system, install applications without being au...

7.6CVSS5.9AI score0.00582EPSS

CVE•added 2022/04/15 3:15 p.m.•100 views

CVE-2022-20721

6.8CVSS5.9AI score0.00553EPSS

CVE•added 2022/04/15 3:15 p.m.•98 views

CVE-2022-20718

9CVSS6.4AI score0.01869EPSS

CVE•added 2022/04/15 3:15 p.m.•97 views

CVE-2022-20723

9CVSS6.4AI score0.01255EPSS

CVE•added 2022/04/15 3:15 p.m.•93 views

CVE-2022-20725

5.5CVSS5.9AI score0.00764EPSS

CVE•added 2022/04/15 3:15 p.m.•91 views

CVE-2022-20720

9CVSS6.4AI score0.00566EPSS

CVE•added 2022/04/15 3:15 p.m.•89 views

CVE-2022-20683

A vulnerability in the Application Visibility and Control (AVC-FNF) feature of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to i...

8.6CVSS8.5AI score0.00187EPSS

CVE•added 2022/04/15 3:15 p.m.•89 views

CVE-2022-20722

6.8CVSS5.9AI score0.00553EPSS

CVE•added 2022/04/15 3:15 p.m.•84 views

CVE-2022-20727

7.2CVSS6.3AI score0.00534EPSS

CVE•added 2022/04/15 3:15 p.m.•82 views

CVE-2022-20719

9CVSS6.4AI score0.01577EPSS

CVE•added 2022/04/15 3:15 p.m.•74 views

CVE-2022-20684

A vulnerability in Simple Network Management Protocol (SNMP) trap generation for wireless clients of Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family could allow an unauthenticated, adjacent attacker to cause an affected device to unexpectedly reload, resulting in a denial of ...

7.4CVSS6.7AI score0.00086EPSS

CVE•added 2022/04/15 3:15 p.m.•72 views

CVE-2022-20692

A vulnerability in the NETCONF over SSH feature of Cisco IOS XE Software could allow a low-privileged, authenticated, remote attacker to cause a denial of service condition (DoS) on an affected device. This vulnerability is due to insufficient resource management. An attacker could exploit this vul...

7.7CVSS6.5AI score0.00316EPSS