Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

12000 router vulnerabilities and exploits

(subscribe to this query)
5
CVSSv2
CVE-2001-0861
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 and previous versions allows remote malicious users to cause a denial of service (CPU consumption) by flooding the router with traffic that generates a large number of ICMP Unreachable replies.
Cisco 12000 Router
7.5
CVSSv2
CVE-2001-0862
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not block non-initial packet fragments, which allows remote malicious users to bypass the ACL.
Cisco 12000 Router
7.5
CVSSv2
CVE-2001-0864
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly handle the implicit "deny ip any any" rule in an outgoing ACL when the ACL contains exactly 448 entries, which can allow some outgoing packets to bypass access restrictions.
Cisco 12000 Router
7.5
CVSSv2
CVE-2001-0865
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not support the "fragment" keyword in an outgoing ACL, which could allow fragmented packets in violation of the intended access.
Cisco 12000 Router
7.5
CVSSv2
CVE-2001-0866
Cisco 12000 with IOS 12.0 and lines card based on Engine 2 does not properly handle an outbound ACL when an input ACL is not configured on all the interfaces of a multi port line card, which could allow remote malicious users to bypass the intended access controls.
Cisco 12000 Router
7.5
CVSSv2
CVE-2001-0867
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly filter does not properly filter packet fragments even when the "fragment" keyword is used in an ACL, which allows remote malicious users to bypass the intended access controls.
Cisco 12000 Router
5
CVSSv2
CVE-2001-0863
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not handle the "fragment" keyword in a compiled ACL (Turbo ACL) for packets that are sent to the router, which allows remote malicious users to cause a denial of service via a flood of fragments.
Cisco 12000 Router
4.6
CVSSv2
CVE-2016-1361
Cisco IOS XR up to and including 4.3.2 on Gigabit Switch Router (GSR) 12000 devices does not properly check for a Bidirectional Forwarding Detection (BFD) header in a UDP packet, which allows remote malicious users to cause a denial of service (line-card restart) via a crafted pa...
Cisco Ios Xr 4.0.3Cisco Ios Xr 3.8.2Cisco Ios Xr 4.2.0Cisco Ios Xr 3.9.2Cisco Ios Xr 4.2.1Cisco Ios Xr 3.8.4Cisco Ios Xr 3.4.3Cisco Ios Xr 4.0.1Cisco Ios Xr 3.5.4Cisco Ios Xr 3.5.3Cisco Ios Xr 3.6.0Cisco Ios Xr 3.6.3Cisco Ios Xr 3.9.1Cisco Ios Xr 3.4.2Cisco Ios Xr 3.4.1Cisco Ios Xr 3.6.2Cisco Ios Xr 3.6.1Cisco Ios Xr 4.2.3Cisco Ios Xr 4.2.2Cisco Ios Xr 4.3.0Cisco Ios Xr 3.5.2Cisco Ios Xr 3.8.1
7.8
CVSSv2
CVE-2011-0943
Cisco IOS XR 3.8.3, 3.8.4, and 3.9.1 allows remote malicious users to cause a denial of service (NetIO process restart or device reload) via a crafted IPv4 packet, aka Bug ID CSCth44147.
Cisco Ios Xr 3.8.3Cisco Ios Xr 3.8.4Cisco Ios Xr 3.9.1
7.8
CVSSv2
CVE-2011-1651
Cisco IOS XR 3.9.x and 4.0.x prior to 4.0.3 and 4.1.x prior to 4.1.1, when an SPA interface processor is installed, allows remote malicious users to cause a denial of service (device reload) via a crafted IPv4 packet, aka Bug ID CSCto45095.
Cisco Ios Xr 3.0Cisco Ios Xr 3.9.1Cisco Ios Xr 4.0.0Cisco Ios Xr 4.0.1Cisco Ios Xr 4.0.2Cisco Ios Xr 4.1Cisco Ios Xr 3.9.0Cisco Ios Xr 3.9.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977IMAPlocal usersCVE-2024-32038CVE-2023-49963CVE-2023-22869CVE-2024-31497localCVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook