Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco ios vulnerabilities and exploits
(subscribe to this query)
10
CVSSv3
CVE-2023-20198
Cisco is providing an update for the ongoing investigation into observed exploitation of the web UI feature in Cisco IOS XE Software. We are updating the list of fixed releases and adding the Software Checker. Our investigation has determined that the actors exploited two previou...
Cisco Ios Xe
3 Metasploit modules
34 Github repositories
1 Article
10
CVSSv3
CVE-2019-12643
A vulnerability in the Cisco REST API virtual service container for Cisco IOS XE Software could allow an unauthenticated, remote malicious user to bypass authentication on the managed Cisco IOS XE device. The vulnerability is due to an improper check performed by the area of code...
Cisco Ios Xe 16.6.5
Cisco Ios Xe 15.5\\(3\\)s3.16
1 Article
9.9
CVSSv3
CVE-2021-1411
Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an malicious user to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept pro...
Cisco Jabber
1 Article
9.8
CVSSv3
CVE-2023-38545
This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allow that to resolve the address instead of it getting done by curl itself, the maximum length that host name can be is 255 byte...
Haxx Libcurl
Fedoraproject Fedora 37
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager -
Microsoft Windows 10 22h2
Microsoft Windows 11 21h2
Microsoft Windows 11 22h2
Microsoft Windows 11 23h2
Microsoft Windows 10 1809
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows 10 21h2
9 Github repositories
2 Articles
9.8
CVSSv3
CVE-2021-34727
A vulnerability in the vDaemon process in Cisco IOS XE SD-WAN Software could allow an unauthenticated, remote malicious user to cause a buffer overflow on an affected device. This vulnerability is due to insufficient bounds checking when an affected device processes traffic. An a...
Cisco Ios Xe Sd-wan -
9.8
CVSSv3
CVE-2021-1451
A vulnerability in the Easy Virtual Switching System (VSS) feature of Cisco IOS XE Software for Cisco Catalyst 4500 Series Switches and Cisco Catalyst 4500-X Series Switches could allow an unauthenticated, remote malicious user to execute arbitrary code on the underlying Linux op...
Cisco Ios Xe 3.6.0be
Cisco Ios Xe 3.6.0e
Cisco Ios Xe 3.6.1e
Cisco Ios Xe 3.6.2e
Cisco Ios Xe 3.6.3e
Cisco Ios Xe 3.6.4e
Cisco Ios Xe 3.6.5ae
Cisco Ios Xe 3.6.5be
Cisco Ios Xe 3.6.5e
Cisco Ios Xe 3.6.6e
Cisco Ios Xe 3.6.7e
Cisco Ios Xe 3.6.8e
Cisco Ios Xe 3.6.9e
Cisco Ios Xe 3.6.10e
Cisco Ios Xe 3.7.0e
Cisco Ios Xe 3.7.1e
Cisco Ios Xe 3.7.2e
Cisco Ios Xe 3.7.3e
Cisco Ios Xe 3.7.4e
Cisco Ios Xe 3.7.5e
Cisco Ios Xe 3.8.0e
Cisco Ios Xe 3.8.1e
9.8
CVSSv3
CVE-2021-1300
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote malicious user to execute attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Cisco Ios Xe Sd-wan -
Cisco Sd-wan Firmware 18.3.8
Cisco Sd-wan Firmware 18.4.4
Cisco Sd-wan Firmware 19.2.1
Cisco Sd-wan Firmware 19.2.99
Cisco Sd-wan Vsmart Controller Firmware
Cisco Sd-wan Vbond Orchestrator -
Cisco Catalyst Sd-wan Manager -
1 Article
9.8
CVSSv3
CVE-2021-1301
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote malicious user to execute attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Cisco Ios Xe Sd-wan -
Cisco Sd-wan Firmware 18.3.8
Cisco Sd-wan Firmware 18.4.4
Cisco Sd-wan Firmware 19.2.1
Cisco Sd-wan Firmware 19.2.99
Cisco Sd-wan Vsmart Controller Firmware
Cisco Sd-wan Vbond Orchestrator -
Cisco Catalyst Sd-wan Manager -
1 Article
9.8
CVSSv3
CVE-2020-3284
A vulnerability in the enhanced Preboot eXecution Environment (PXE) boot loader for Cisco IOS XR 64-bit Software could allow an unauthenticated, remote malicious user to execute unsigned code during the PXE boot process on an affected device. The PXE boot loader is part of the BI...
Cisco A9k-rsp880-se Firmware
Cisco Ios Xr
Cisco A9k-rsp880-tr Firmware
Cisco A99-rp2-se Firmware
Cisco A99-rp2-tr Firmware
Cisco A99-rsp-se Firmware
Cisco A99-rsp-tr Firmware
Cisco A9k-rsp880-lt-se Firmware
Cisco A9k-rsp880-lt-tr Firmware
Cisco Asr-9901-rp Firmware
Cisco A99-rp3-se Firmware
Cisco A99-rp3-tr Firmware
Cisco A9k-rsp5-se Firmware
Cisco A9k-rsp5-tr Firmware
Cisco Ncs1001 Firmware
Cisco Ncs1002 Firmware
Cisco Ncs1004 Firmware
Cisco N540-12z20g-sys-a\\/d Firmware
Cisco N540-24z8q2c-m Firmware
Cisco N540-28z4c-sys-a\\/d Firmware
Cisco N540-acc-sys Firmware
Cisco N540x-16z4g8q2c-a\\/d Firmware
9.8
CVSSv3
CVE-2020-3375
A vulnerability in Cisco SD-WAN Solution Software could allow an unauthenticated, remote malicious user to cause a buffer overflow on an affected device. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending crafted tra...
Cisco Sd-wan
Cisco Ios Xe Sd-wan
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »