Ios Xr@5.2.2 Security Vulnerabilities and Issues — Ios Xr@5.2.2 CVE List

Lucene search

CiscoIos Xr5.2.2

9 matches found

CVE•added 2016/05/29 10:59 p.m.•106 views

CVE-2016-1409

The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Cisco IOS XE 2.1 through 3.17S, IOS XR 2.0.0 through 5.3.2, and NX-OS allows remote attackers to cause a denial of service (packet-processing outage) via crafted ND messages, aka Bug ID CSCuz66542, as exploited in the wild in ...

7.5CVSS7.1AI score0.04038EPSS

CVE•added 2024/03/13 5:15 p.m.•52 views

CVE-2024-20319

A vulnerability in the UDP forwarding code of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to bypass configured management plane protection policies and access the Simple Network Management Plane (SNMP) server of an affected device. This vulnerability is due to incorrect ...

4.3CVSS4.8AI score0.00018EPSS

CVE•added 2015/03/26 10:59 a.m.•45 views

CVE-2015-0672

The DHCPv4 server in Cisco IOS XR 5.2.2 on ASR 9000 devices allows remote attackers to cause a denial of service (service outage) via a flood of crafted DHCP packets, aka Bug ID CSCup67822.

5CVSS6.8AI score0.00681EPSS

CVE•added 2016/07/15 4:59 p.m.•42 views

CVE-2016-1426

Cisco IOS XR 5.x through 5.2.5 on NCS 6000 devices allows remote attackers to cause a denial of service (timer consumption and Route Processor reload) via crafted SSH traffic, aka Bug ID CSCux76819.

7.8CVSS7.4AI score0.00743EPSS

CVE•added 2016/01/05 2:59 a.m.•39 views

CVE-2015-6432

Cisco IOS XR 4.2.0, 4.3.0, 5.0.0, 5.1.0, 5.2.0, 5.2.2, 5.2.4, 5.3.0, and 5.3.2 does not properly restrict the number of Path Computation Elements (PCEs) for OSPF LSA opaque area updates, which allows remote attackers to cause a denial of service (device reload) via a crafted update, aka Bug ID CSCu...

7.5CVSS7.3AI score0.00895EPSS

CVE•added 2016/05/25 1:59 a.m.•37 views

CVE-2016-1407

Cisco IOS XR through 5.3.2 mishandles Local Packet Transport Services (LPTS) flow-base entries, which allows remote attackers to cause a denial of service (session drop) by making many connection attempts to open TCP ports, aka Bug ID CSCux95576.

7.5CVSS7.4AI score0.01315EPSS

CVE•added 2015/07/23 2:59 p.m.•33 views

CVE-2015-4285

The Local Packet Transport Services (LPTS) implementation in Cisco IOS XR 5.1.2, 5.1.3, 5.2.1, and 5.2.2 on ASR9k devices makes incorrect decisions about the opening of TCP and UDP ports during the processing of flow base entries, which allows remote attackers to cause a denial of service (resource...

5CVSS6.9AI score0.00474EPSS

CVE•added 2016/10/05 8:59 p.m.•33 views

CVE-2016-6421

Cisco IOS XR 5.2.2 allows remote attackers to cause a denial of service (process restart) via a crafted OSPF Link State Advertisement (LSA) update, aka Bug ID CSCvb05643.

5.3CVSS5.2AI score0.00546EPSS

CVE•added 2016/08/23 2:11 a.m.•31 views

CVE-2016-6355

Memory leak in Cisco IOS XR 5.1.x through 5.1.3, 5.2.x through 5.2.5, and 5.3.x through 5.3.2 on ASR 9001 devices allows remote attackers to cause a denial of service (control-plane protocol outage) via crafted fragmented packets, aka Bug ID CSCux26791.

7.8CVSS7.4AI score0.00743EPSS