Ios@* Security Vulnerabilities and Issues — Ios@* CVE List

Lucene search

CiscoIos*

22 matches found

cve•added 2017/09/29 1:34 a.m.•1165 views

CVE-2017-12240

The DHCP relay subsystem of Cisco IOS 12.2 through 15.6 and Cisco IOS XE Software contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code and gain full control of an affected system. The attacker could also cause an affected system to reload, resultin...

10CVSS10AI score0.19962EPSS

cve•added 2017/03/17 10:59 p.m.•1116 views

CVE-2017-3881

A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of an affected device or remotely execute code with elevated privileges. The Cluster Management Protocol utilizes T...

10CVSS9.7AI score0.94083EPSS

cve•added 2017/07/17 9:29 p.m.•1094 views

CVE-2017-6736

The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS 12.0 through 12.4 and 15.0 through 15.6 and IOS XE 2.2 through 3.17 contains multiple vulnerabilities that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to...

9CVSS8.9AI score0.86397EPSS

cve•added 2017/07/17 9:29 p.m.•1008 views

CVE-2017-6743

9CVSS8.9AI score0.11826EPSS

cve•added 2017/09/29 1:34 a.m.•1000 views

CVE-2017-12237

A vulnerability in the Internet Key Exchange Version 2 (IKEv2) module of Cisco IOS 15.0 through 15.6 and Cisco IOS XE 3.5 through 16.5 could allow an unauthenticated, remote attacker to cause high CPU utilization, traceback messages, or a reload of an affected device that leads to a denial of servi...

7.8CVSS7.5AI score0.08583EPSS

cve•added 2017/07/17 9:29 p.m.•1000 views

CVE-2017-6737

9CVSS8.9AI score0.11126EPSS

cve•added 2017/07/17 9:29 p.m.•993 views

CVE-2017-6738

9CVSS8.9AI score0.11126EPSS

cve•added 2017/07/17 9:29 p.m.•985 views

CVE-2017-6740

9CVSS9AI score0.16733EPSS

cve•added 2017/07/17 9:29 p.m.•984 views

CVE-2017-6739

9CVSS9AI score0.11126EPSS

cve•added 2017/09/29 1:34 a.m.•983 views

CVE-2017-12232

A vulnerability in the implementation of a protocol in Cisco Integrated Services Routers Generation 2 (ISR G2) Routers running Cisco IOS 15.0 through 15.6 could allow an unauthenticated, adjacent attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The v...

6.5CVSS6.3AI score0.01583EPSS

cve•added 2017/09/29 1:34 a.m.•978 views

CVE-2017-12233

Multiple vulnerabilities in the implementation of the Common Industrial Protocol (CIP) feature in Cisco IOS 12.4 through 15.6 could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerabilities are due to the i...

7.8CVSS7.5AI score0.10011EPSS

cve•added 2017/09/29 1:34 a.m.•959 views

CVE-2017-12231

A vulnerability in the implementation of Network Address Translation (NAT) functionality in Cisco IOS 12.4 through 15.6 could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to the improper translation of H.323 m...

7.8CVSS7.5AI score0.1085EPSS

cve•added 2017/09/29 1:34 a.m.•954 views

CVE-2017-12235

A vulnerability in the implementation of the PROFINET Discovery and Configuration Protocol (PN-DCP) for Cisco IOS 12.2 through 15.6 could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerability is due to th...

7.8CVSS7.6AI score0.07628EPSS

cve•added 2017/09/29 1:34 a.m.•952 views

CVE-2017-12234

7.8CVSS7.5AI score0.10011EPSS

cve•added 2017/09/29 1:34 a.m.•951 views

CVE-2017-12238

A vulnerability in the Virtual Private LAN Service (VPLS) code of Cisco IOS 15.0 through 15.4 for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, adjacent attacker to cause a C6800-16P10G or C6800-16P10G-XL type line card to crash, resulting in a denial of service (DoS) conditio...

6.5CVSS6.5AI score0.00216EPSS

cve•added 2017/07/17 9:29 p.m.•614 views

CVE-2017-6742

9CVSS8.9AI score0.07884EPSS

cve•added 2017/03/22 7:59 p.m.•89 views

CVE-2017-3857

A vulnerability in the Layer 2 Tunneling Protocol (L2TP) parsing function of Cisco IOS (12.0 through 12.4 and 15.0 through 15.6) and Cisco IOS XE (3.1 through 3.18) could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to insufficient valida...

7.8CVSS7.5AI score0.01141EPSS

cve•added 2017/03/22 7:59 p.m.•62 views

CVE-2017-3864

A vulnerability in the DHCP client implementation of Cisco IOS (12.2, 12.4, and 15.0 through 15.6) and Cisco IOS XE (3.3 through 3.7) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability occurs during the parsing of a crafted DHCP packet. A...

8.6CVSS8.3AI score0.01125EPSS

cve•added 2017/10/19 8:29 a.m.•58 views

CVE-2017-12289

A vulnerability in conditional, verbose debug logging for the IPsec feature of Cisco IOS XE Software could allow an authenticated, local attacker to display sensitive IPsec information in the system log file. The vulnerability is due to incorrect implementation of IPsec conditional, verbose debug l...

4.4CVSS4.5AI score0.00084EPSS

cve•added 2017/09/25 5:29 p.m.•44 views

CVE-2010-3049

Cisco IOS before 12.2(33)SXI allows local users to cause a denial of service (device reboot).

5.5CVSS5.3AI score0.00058EPSS

cve•added 2017/08/02 7:29 p.m.•41 views

CVE-2012-5030

Cisco IOS before 15.2(4)S6 does not initialize an unspecified variable, which might allow remote authenticated users to cause a denial of service (CPU consumption, watchdog timeout, crash) by walking specific SNMP objects.

6.8CVSS6.2AI score0.00454EPSS

cve•added 2017/09/25 5:29 p.m.•35 views

CVE-2010-3050

Cisco IOS before 12.2(33)SXI allows remote authenticated users to cause a denial of service (device reboot).

6.8CVSS6.1AI score0.00487EPSS