Ios@12.2 Security Vulnerabilities and Issues — Page 3 of Ios@12.2 CVE List

Lucene search

CiscoIos12.2

112 matches found

CVE•added 2012/05/02 10:9 a.m.•38 views

CVE-2012-0339

Cisco IOS 12.2 through 12.4 and 15.0 does not recognize the vrf-also keyword during enforcement of access-class commands, which allows remote attackers to establish TELNET connections from arbitrary source IP addresses via a standard TELNET client, aka Bug ID CSCsi77774.

5CVSS7AI score0.00243EPSS

CVE•added 2012/09/16 10:34 a.m.•38 views

CVE-2012-3079

Cisco IOS 12.2 allows remote attackers to cause a denial of service (CPU consumption) by establishing many IPv6 neighbors, aka Bug ID CSCtn78957.

7.8CVSS6.8AI score0.00427EPSS

CVE•added 2013/09/27 10:8 a.m.•38 views

CVE-2013-5472

The NTP implementation in Cisco IOS 12.0 through 12.4 and 15.0 through 15.1, and IOS XE 2.1 through 3.3, does not properly handle encapsulation of multicast NTP packets within MSDP SA messages, which allows remote attackers to cause a denial of service (device reload) by leveraging an MSDP peer rel...

7.1CVSS6.7AI score0.00399EPSS

CVE•added 2013/09/27 10:8 a.m.•38 views

CVE-2013-5477

The T1/E1 driver-queue functionality in Cisco IOS 12.2 and 15.0 through 15.3, when an HDLC32 driver is used, allows remote attackers to cause a denial of service (interface queue wedge) via bursty network traffic, aka Bug ID CSCub67465.

7.8CVSS6.8AI score0.00427EPSS

CVE•added 2013/09/27 10:8 a.m.•38 views

CVE-2013-5480

The DNS-over-TCP implementation in Cisco IOS 12.2 and 15.0 through 15.3, when NAT is used, allows remote attackers to cause a denial of service (device reload) via a crafted IPv4 DNS TCP stream, aka Bug ID CSCuf28733.

7.8CVSS6.7AI score0.00427EPSS

CVE•added 2009/09/28 7:30 p.m.•37 views

CVE-2009-2872

Cisco IOS 12.0 through 12.4, when IP-based tunnels and the Cisco Express Forwarding feature are enabled, allows remote attackers to cause a denial of service (device reload) via a malformed packet that is not properly handled during switching from one tunnel to a second tunnel, aka Bug IDs CSCsh975...

6.8CVSS6.6AI score0.01117EPSS

CVE•added 2007/08/09 9:17 p.m.•36 views

CVE-2007-4292

Multiple memory leaks in Cisco IOS 12.0 through 12.4 allow remote attackers to cause a denial of service (device crash) via a malformed SIP packet, aka (1) CSCsf11855, (2) CSCeb21064, (3) CSCse40276, (4) CSCse68355, (5) CSCsf30058, (6) CSCsb24007, and (7) CSCsc60249.

9.3CVSS6.6AI score0.07928EPSS

CVE•added 2012/09/27 12:55 a.m.•36 views

CVE-2012-4619

The NAT implementation in Cisco IOS 12.2, 12.4, and 15.0 through 15.2 allows remote attackers to cause a denial of service (device reload) via transit IP packets, aka Bug ID CSCtr46123.

7.8CVSS6.8AI score0.00602EPSS

CVE•added 2013/09/27 10:8 a.m.•36 views

CVE-2013-5479

7.8CVSS6.7AI score0.00427EPSS

CVE•added 2013/09/27 10:8 a.m.•35 views

CVE-2013-5474

Race condition in the IPv6 virtual fragmentation reassembly (VFR) implementation in Cisco IOS 12.2 through 12.4 and 15.0 through 15.3 allows remote attackers to cause a denial of service (device reload or hang) via fragmented IPv6 packets, aka Bug ID CSCud64812.

7.8CVSS6.8AI score0.0033EPSS

CVE•added 2007/08/08 11:17 p.m.•32 views

CVE-2007-4263

Unspecified vulnerability in the server side of the Secure Copy (SCP) implementation in Cisco 12.2-based IOS allows remote authenticated users to read, write or overwrite any file on the device's filesystem via unknown vectors.

8.5CVSS6.2AI score0.02219EPSS

CVE•added 2011/10/22 2:59 a.m.•32 views

CVE-2011-1640

The ethernet-lldp component in Cisco IOS 12.2 before 12.2(33)SXJ1 does not properly support a large number of LLDP Management Address (MA) TLVs, which allows remote attackers to cause a denial of service (device crash) via crafted LLDPDUs, aka Bug ID CSCtj22354.

7.8CVSS7.3AI score0.00527EPSS

Total number of security vulnerabilities112