Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco ios - vulnerabilities and exploits
(subscribe to this query)
NA
CVE_2022_40684
Official Writeup - Simple CTF 2.0 Created: April 23, 2024 7:50 PM Today I completed an other room on TryHackMe with a simple file-upload vulnerability which I built. I have tried for dancing around this whole CTF machine and getting a lot of walls of challenges in the end it co...
1 Github repository
7.4
CVSSv3
CVE-2024-20313
A vulnerability in the OSPF version 2 (OSPFv2) feature of Cisco IOS XE Software could allow an unauthenticated, adjacent malicious user to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. This vulnerability is due to improper vali...
Cisco Ios Xe 17.5.1
Cisco Ios Xe 17.5.1a
Cisco Ios Xe 17.6.1
Cisco Ios Xe 17.6.1a
Cisco Ios Xe 17.6.1w
Cisco Ios Xe 17.6.3
Cisco Ios Xe 17.9.1
Cisco Ios Xe 17.6.2
Cisco Ios Xe 17.6.3a
Cisco Ios Xe 17.7.1
Cisco Ios Xe 17.7.1a
Cisco Ios Xe 17.7.2
Cisco Ios Xe 17.8.1
Cisco Ios Xe 17.8.1a
Cisco Ios Xe 17.11.1
Cisco Ios Xe 17.10.1
Cisco Ios Xe 17.6.4
Cisco Ios Xe 17.9.1a
Cisco Ios Xe 17.9.1w
Cisco Ios Xe 17.6.1x
Cisco Ios Xe 17.6.1y
Cisco Ios Xe 17.6.1z
NA
CVE-2024-20307
A vulnerability in the IKEv1 fragmentation code of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause a heap overflow, resulting in an affected device reloading. This vulnerability exists because crafted, fragmented IKEv1 p...
NA
CVE-2024-20308
A vulnerability in the IKEv1 fragmentation code of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause a heap underflow, resulting in an affected device reloading. This vulnerability exists because crafted, fragmented IKEv1 ...
NA
CVE-2024-20259
A vulnerability in the DHCP snooping feature of Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. This vulnerability is due to a crafted IPv4 DHCP reque...
NA
CVE-2024-20278
A vulnerability in the NETCONF feature of Cisco IOS XE Software could allow an authenticated, remote malicious user to elevate privileges to root on an affected device. This vulnerability is due to improper validation of user-supplied input. An attacker could exploit this vulnera...
NA
CVE-2024-20303
A vulnerability in the multicast DNS (mDNS) gateway feature of Cisco IOS XE Software for Wireless LAN Controllers (WLCs) could allow an unauthenticated, adjacent malicious user to cause a denial of service (DoS) condition. This vulnerability is due to improper management of mDNS ...
NA
CVE-2024-20306
A vulnerability in the Unified Threat Defense (UTD) configuration CLI of Cisco IOS XE Software could allow an authenticated, local malicious user to execute arbitrary commands as root on the underlying host operating system. To exploit this vulnerability, an attacker must have le...
NA
CVE-2024-20311
A vulnerability in the Locator ID Separation Protocol (LISP) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause an affected device to reload. This vulnerability is due to the incorrect handling of LISP packets. A...
NA
CVE-2024-20314
A vulnerability in the IPv4 Software-Defined Access (SD-Access) fabric edge node feature of Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause high CPU utilization and stop all traffic processing, resulting in a denial of service (DoS) condition ...
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4654
CVE-2023-49606
encryption
NULL pointer dereference
CVE-2024-4439
CVE-2024-4649
race condition
CVE-2024-27202
CVE-2024-34566
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »