Ios Xr@6.5.3 Security Vulnerabilities and Issues — Ios Xr@6.5.3 CVE List

Lucene search

CiscoIos Xr6.5.3

9 matches found

CVE•added 2020/09/23 1:15 a.m.•1005 views

CVE-2020-3569

Multiple vulnerabilities in the Distance Vector Multicast Routing Protocol (DVMRP) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to either immediately crash the Internet Group Management Protocol (IGMP) process or make it consume available memory and eventually cr...

8.6CVSS8.3AI score0.19978EPSS

CVE•added 2020/02/05 6:15 p.m.•933 views

CVE-2020-3118

A vulnerability in the Cisco Discovery Protocol implementation for Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to execute arbitrary code or cause a reload on an affected device. The vulnerability is due to improper validation of string input from certain fields in Cisco ...

8.8CVSS8.8AI score0.00168EPSS

CVE•added 2020/02/05 6:15 p.m.•120 views

CVE-2020-3120

A vulnerability in the Cisco Discovery Protocol implementation for Cisco FXOS Software, Cisco IOS XR Software, and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability is d...

7.4CVSS6.5AI score0.00319EPSS

CVE•added 2020/01/26 5:15 a.m.•119 views

CVE-2019-16027

A vulnerability in the implementation of the Intermediate System–to–Intermediate System (IS–IS) routing protocol functionality in Cisco IOS XR Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition in the IS–IS process. The vulnerability is due to improp...

7.7CVSS6.5AI score0.01067EPSS

CVE•added 2024/09/11 5:15 p.m.•109 views

CVE-2024-20381

A vulnerability in the JSON-RPC API feature in Cisco Crosswork Network Services Orchestrator (NSO) and ConfD that is used by the web-based management interfaces of Cisco Optical Site Manager and Cisco RV340 Dual WAN Gigabit VPN Routers could allow an authenticated, remote attacker to modify the con...

8.8CVSS8.6AI score0.00255EPSS

CVE•added 2019/11/26 4:15 a.m.•87 views

CVE-2019-15998

A vulnerability in the access-control logic of the NETCONF over Secure Shell (SSH) of Cisco IOS XR Software may allow connections despite an access control list (ACL) that is configured to deny access to the NETCONF over SSH of an affected device. The vulnerability is due to a missing check in the ...

5.3CVSS5.1AI score0.00359EPSS

CVE•added 2024/09/11 5:15 p.m.•73 views

CVE-2024-20398

A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to obtain read/write file system access on the underlying operating system of an affected device. This vulnerability is due to insufficient validation of user arguments that are passed to specific CLI c...

8.8CVSS8.1AI score0.00294EPSS

CVE•added 2024/03/13 5:15 p.m.•52 views

CVE-2024-20319

A vulnerability in the UDP forwarding code of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to bypass configured management plane protection policies and access the Simple Network Management Plane (SNMP) server of an affected device. This vulnerability is due to incorrect ...

4.3CVSS4.8AI score0.00018EPSS

CVE•added 2024/09/11 5:15 p.m.•46 views

CVE-2024-20343

A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to read any file in the file system of the underlying Linux operating system. The attacker must have valid credentials on the affected device. This vulnerability is due to incorrect validation of the ar...

5.5CVSS5.2AI score0.00104EPSS