Ios@15.2 Security Vulnerabilities and Issues — Page 2 of Ios@15.2 CVE List

Lucene search

CiscoIos15.2

63 matches found

CVE•added 2014/04/04 3:10 p.m.•38 views

CVE-2014-2143

The IKE implementation in Cisco IOS 15.4(1)T and earlier and IOS XE allows remote attackers to cause a denial of service (security-association drop) via crafted Main Mode packets, aka Bug ID CSCun31021.

5CVSS6.7AI score0.00412EPSS

CVE•added 2014/09/25 10:55 a.m.•38 views

CVE-2014-3358

Memory leak in Cisco IOS 15.0, 15.1, 15.2, and 15.4 and IOS XE 3.3.xSE before 3.3.2SE, 3.3.xXO before 3.3.1XO, 3.5.xE before 3.5.2E, and 3.11.xS before 3.11.1S allows remote attackers to cause a denial of service (memory consumption, and interface queue wedge or device reload) via malformed mDNS pa...

7.8CVSS6.8AI score0.00898EPSS

CVE•added 2013/09/27 10:8 a.m.•37 views

CVE-2013-5480

The DNS-over-TCP implementation in Cisco IOS 12.2 and 15.0 through 15.3, when NAT is used, allows remote attackers to cause a denial of service (device reload) via a crafted IPv4 DNS TCP stream, aka Bug ID CSCuf28733.

7.8CVSS6.7AI score0.00427EPSS

CVE•added 2013/09/27 10:8 a.m.•36 views

CVE-2013-5477

The T1/E1 driver-queue functionality in Cisco IOS 12.2 and 15.0 through 15.3, when an HDLC32 driver is used, allows remote attackers to cause a denial of service (interface queue wedge) via bursty network traffic, aka Bug ID CSCub67465.

7.8CVSS6.8AI score0.00427EPSS

CVE•added 2012/05/02 10:9 a.m.•35 views

CVE-2011-3289

Cisco IOS 12.4 and 15.0 through 15.2 allows physically proximate attackers to bypass the No Service Password-Recovery feature and read the start-up configuration via unspecified vectors, aka Bug ID CSCtr97640.

3.6CVSS6.7AI score0.00071EPSS

CVE•added 2013/09/27 10:8 a.m.•35 views

CVE-2013-5479

7.8CVSS6.7AI score0.00427EPSS

CVE•added 2012/05/03 8:55 p.m.•34 views

CVE-2012-1324

Race condition in the Zone-Based Firewall in Cisco IOS 15.1 and 15.2, when IPS policies are configured, allows remote attackers to cause a denial of service (device crash) by sending IPv6 packets, aka Bug ID CSCtk53534.

7.1CVSS6.8AI score0.00309EPSS

CVE•added 2012/09/16 10:34 a.m.•34 views

CVE-2012-3915

The DMVPN tunnel implementation in Cisco IOS 15.2 allows remote attackers to cause a denial of service (persistent IKE state) via a large volume of hub-to-spoke traffic, aka Bug ID CSCtq39602.

5CVSS6.8AI score0.00474EPSS

CVE•added 2012/09/27 12:55 a.m.•34 views

CVE-2012-4619

The NAT implementation in Cisco IOS 12.2, 12.4, and 15.0 through 15.2 allows remote attackers to cause a denial of service (device reload) via transit IP packets, aka Bug ID CSCtr46123.

7.8CVSS6.8AI score0.00602EPSS

CVE•added 2013/09/27 10:8 a.m.•34 views

CVE-2013-5474

Race condition in the IPv6 virtual fragmentation reassembly (VFR) implementation in Cisco IOS 12.2 through 12.4 and 15.0 through 15.3 allows remote attackers to cause a denial of service (device reload or hang) via fragmented IPv6 packets, aka Bug ID CSCud64812.

7.8CVSS6.8AI score0.0033EPSS

CVE•added 2013/11/18 3:55 a.m.•32 views

CVE-2013-6686

The SSL VPN implementation in Cisco IOS 15.3(1)T2 and earlier allows remote authenticated users to cause a denial of service (interface queue wedge) via crafted DTLS packets in an SSL session, aka Bug IDs CSCuh97409 and CSCud90568.

6.8CVSS6.4AI score0.00316EPSS

CVE•added 2012/09/16 10:34 a.m.•31 views

CVE-2012-3895

Cisco IOS 15.0 through 15.3 allows remote authenticated users to cause a denial of service (device crash) via an MVPNv6 update, aka Bug ID CSCty89224.

6.3CVSS6.5AI score0.0034EPSS

CVE•added 2012/09/16 10:34 a.m.•30 views

CVE-2012-3924

The SSLVPN implementation in Cisco IOS 15.1 and 15.2, when DTLS is enabled, does not properly handle certain outbound ACL configurations, which allows remote authenticated users to cause a denial of service (device crash) via a session involving a PPP over ATM (PPPoA) interface, aka Bug ID CSCty979...

3.5CVSS6.4AI score0.00377EPSS

Total number of security vulnerabilities63