Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

asr 5000 series software vulnerabilities and exploits

(subscribe to this query)
9
CVSSv2
CVE-2017-3819
A privilege escalation vulnerability in the Secure Shell (SSH) subsystem in the StarOS operating system for Cisco ASR 5000 Series, ASR 5500 Series, ASR 5700 Series devices, and Cisco Virtualized Packet Core could allow an authenticated, remote malicious user to gain unrestricted,...
Cisco Asr 5000 Series Software 18.1.0Cisco Asr 5000 Series Software 19.0.m0.60737Cisco Asr 5000 Series Software 20.0.0Cisco Asr 5000 Series Software 19.0.m0.61045Cisco Asr 5000 Series Software 18.1 BaseCisco Asr 5000 Series Software 18.0.0.57828Cisco Asr 5000 Series Software 19.0.m0.60828Cisco Asr 5000 Series Software 18.4.0Cisco Asr 5000 Series Software 18.3 BaseCisco Asr 5000 Series Software 18.1.0.59776Cisco Asr 5000 Series Software 19.1.0.61559Cisco Virtualized Packet Core V19.0 BaseCisco Virtualized Packet Core V18.0 BaseCisco Asr 5000 Series Software 19.3.0Cisco Asr 5000 Series Software 18.0.0.59211Cisco Asr 5000 Series Software 18.1.0.59780Cisco Asr 5000 Series Software 19.2.0Cisco Asr 5000 Series Software 18.3.0Cisco Virtualized Packet Core V20.0 BaseCisco Asr 5000 Series Software 18.0.l0.59219Cisco Asr 5000 Series Software 19.0.1Cisco Asr 5000 Series Software 18.0.0.59167
5
CVSSv2
CVE-2017-6672
A vulnerability in certain filtering mechanisms of access control lists (ACLs) for Cisco ASR 5000 Series Aggregation Services Routers up to and including 21.x could allow an unauthenticated, remote malicious user to bypass ACL rules that have been configured for an affected devic...
Cisco Asr 5000 Series Software 19.3.12Cisco Asr 5000 Series Software 19.6.3Cisco Asr 5000 Series Software 20.1.v5Cisco Asr 5000 Series Software 20.2.12Cisco Asr 5000 Series Software 21.1.m0.65931Cisco Asr 5000 Series Software 21.1.m0.65986Cisco Asr 5000 Series Software 21.2.a0.65995Cisco Asr 5000 Series Software 21.1.m0.65921Cisco Asr 5000 Series Software 19.3.11Cisco Asr 5000 Series Software 19.3.5Cisco Asr 5000 Series Software 19.6.0Cisco Asr 5000 Series Software 20.3.0Cisco Asr 5000 Series Software 21.0.v2Cisco Asr 5000 Series Software 21.1.v0Cisco Asr 5000 Series Software 21.1.0Cisco Asr 5000 Series Software 20.3.1Cisco Asr 5000 Series Software 21.2.a0.65914Cisco Asr 5000 Series Software 20.2.4Cisco Asr 5000 Series Software 21.1.2Cisco Asr 5000 Series Software 21.3.0Cisco Asr 5000 Series Software 21.0.v1.66638Cisco Asr 5000 Series Software 19.6.6
5
CVSSv2
CVE-2016-9216
An IKE Packet Parsing Denial of Service Vulnerability in the ipsecmgr process of Cisco ASR 5000 Software could allow an unauthenticated, remote malicious user to cause the ipsecmgr process to reload. More Information: CSCuy06917 CSCuy45036 CSCuy59525. Known Affected Releases: 20....
Cisco Asr 5000 Series Software 20.0.1.v0Cisco Asr 5000 Series Software 21.0.0Cisco Asr 5000 Series Software 20.0.1.0Cisco Asr 5000 Series Software 20.0.1.a0Cisco Asr 5000 Series Software 20.0.0Cisco Asr 5000 Series Software 20.0.m0.62842Cisco Asr 5000 Series Software 20.0.v0Cisco Asr 5000 Series Software 20.0.m0.63229
4.3
CVSSv2
CVE-2014-3331
The Session Manager component in Packet Data Network Gateway (aka PGW) in Cisco ASR 5000 Series Software 11.0, 12.0, 12.1, 12.2, 14.0, 15.0, 16.x up to and including 16.1.2, and 17.0 allows remote malicious users to cause a denial of service (process crash) via a crafted TCP pack...
Cisco Asr 5000 Series Software 14.0Cisco Asr 5000 Series Software 15.0Cisco Asr 5000 Series Software 11.0Cisco Asr 5000 Series Software 12.0Cisco Asr 5000 Series Software 17.0.0Cisco Asr 5000 Series Software 16.1.0Cisco Asr 5000 Series Software 16.1.1Cisco Asr 5000 Series Software 16.1.2Cisco Asr 5000 Series Software 12.1Cisco Asr 5000 Series Software 12.2
7.1
CVSSv2
CVE-2016-1335
The SSH implementation in Cisco StarOS prior to 19.3.M0.62771 and 20.x prior to 20.0.M0.62768 on ASR 5000 devices mishandles a multi-user public-key authentication configuration, which allows remote authenticated users to gain privileges by establishing a connection from an endpo...
Cisco Asr 5000 Series Software 20.0.0Cisco Asr 5000 Series Software 16.5.2Cisco Asr 5000 Series Software 19.3.0Cisco Asr 5000 Series Software 19.0.1Cisco Asr 5000 Series Software 18.4.0Cisco Asr 5000 Series Software 17.7.0
5
CVSSv2
CVE-2017-6612
A vulnerability in the gateway GPRS support node (GGSN) of Cisco ASR 5000 Series Aggregation Services Routers 17.3.9.62033 up to and including 21.1.2 could allow an unauthenticated, remote malicious user to redirect HTTP traffic sent to an affected device. More Information: CSCvc...
Cisco Asr 5000 Series Software 17.3.9.62033Cisco Asr 5000 Series Software 19.6.3Cisco Asr 5000 Series Software 21.0.1Cisco Asr 5000 Series Software 21.1.2Cisco Asr 5000 Series Software 17.7.5Cisco Asr 5000 Series Software 20.2.12Cisco Asr 5000 Series Software 20.1.2
5
CVSSv2
CVE-2015-4273
The Packet Data Network Gateway (aka PGW) component on Cisco ASR 5000 devices with software 15.0(912), 15.0(935), and 15.0(938) allows remote malicious users to cause a denial of service (Session Manager outage) via malformed fields in an IP packet, aka Bug ID CSCut38476.
Cisco Asr 5000 Series Software 15.0\\(935\\)Cisco Asr 5000 Series Software 15.0\\(938\\)Cisco Asr 5000 Series Software 15.0\\(912\\)
5
CVSSv2
CVE-2015-4275
The Packet Data Network Gateway (aka PGW) component on Cisco ASR 5000 devices with software 18.0.0.59167 and 18.0.0.59211 allows remote malicious users to cause a denial of service via a malformed header in a GTPv2 packet, aka Bug ID CSCut11534.
Cisco Asr 5000 Series Software 18.0.0.59167Cisco Asr 5000 Series Software 18.0.0.59211
5
CVSSv2
CVE-2016-6466
A vulnerability in the IPsec component of StarOS for Cisco ASR 5000 Series routers could allow an unauthenticated, remote malicious user to terminate all active IPsec VPN tunnels and prevent new tunnels from establishing, resulting in a denial of service (DoS) condition. This vul...
Cisco Asr 5000 Series Software 20.0.2.v1Cisco Asr 5000 Series Software 20.0.2.3Cisco Virtualized Packet Core 20.0 BaseCisco Asr 5000 Series Software 20.0.0
5
CVSSv2
CVE-2015-4201
The Gateway General Packet Radio Service Support Node (GGSN) component on Cisco ASR 5000 devices with software 17.2.0.59184 and 18.0.L0.59219 allows remote malicious users to cause a denial of service (Session Manager restart) via an invalid TCP/IP header, aka Bug ID CSCut68058.
Cisco Asr 5000 Series Software 17.2.0.59184Cisco Asr 5000 Series Software 18.0.l059219
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserializationCVE-2024-4040cross-site scriptingCVE-2023-25790CVE-2024-2961XML external entityCVE-2024-26926CVE-2024-32806CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook