Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco ios xe 17.1.1 vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2023-20273
A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote malicious user to inject commands with the privileges of root. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending c...
Cisco Ios Xe
2 Metasploit modules
4 Github repositories
1 Article
10
CVSSv3
CVE-2023-20198
Cisco is providing an update for the ongoing investigation into observed exploitation of the web UI feature in Cisco IOS XE Software. We are updating the list of fixed releases and adding the Software Checker. Our investigation has determined that the actors exploited two previou...
Cisco Ios Xe
3 Metasploit modules
35 Github repositories
1 Article
7.5
CVSSv3
CVE-2023-44487
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
Ietf Http 2.0
Nghttp2 Nghttp2
Netty Netty
Envoyproxy Envoy 1.27.0
Envoyproxy Envoy 1.26.4
Envoyproxy Envoy 1.25.9
Envoyproxy Envoy 1.24.10
Eclipse Jetty
Caddyserver Caddy
Golang Http2
Golang Go
Golang Networking
F5 Big-ip Analytics
F5 Big-ip Policy Enforcement Manager
F5 Big-ip Local Traffic Manager
F5 Big-ip Link Controller
F5 Big-ip Global Traffic Manager
F5 Big-ip Fraud Protection Service
F5 Big-ip Domain Name System
F5 Big-ip Application Security Manager
F5 Big-ip Application Acceleration Manager
F5 Big-ip Advanced Firewall Manager
35 Github repositories
2 Articles
7.5
CVSSv3
CVE-2023-20227
A vulnerability in the Layer 2 Tunneling Protocol (L2TP) feature of Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper handling of certain L2TP packe...
Cisco Ios Xe 16.8.1
Cisco Ios Xe 16.8.1a
Cisco Ios Xe 16.8.1b
Cisco Ios Xe 16.8.1c
Cisco Ios Xe 16.8.1d
Cisco Ios Xe 16.8.1e
Cisco Ios Xe 16.8.1s
Cisco Ios Xe 16.8.2
Cisco Ios Xe 16.8.3
Cisco Ios Xe 16.9.1
Cisco Ios Xe 16.9.1a
Cisco Ios Xe 16.9.1b
Cisco Ios Xe 16.9.1s
Cisco Ios Xe 16.9.2
Cisco Ios Xe 16.9.3
Cisco Ios Xe 16.9.4
Cisco Ios Xe 16.9.5
Cisco Ios Xe 16.9.5f
Cisco Ios Xe 16.9.6
Cisco Ios Xe 16.9.7
Cisco Ios Xe 16.9.8
Cisco Ios Xe 16.10.1
6.6
CVSSv3
CVE-2023-20109
A vulnerability in the Cisco Group Encrypted Transport VPN (GET VPN) feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker who has administrative control of either a group member or a key server to execute arbitrary code on an affec...
Cisco Ios 15.2(4)ea
Cisco Ios 15.4(2)s2
Cisco Ios 15.0(2)ex4
Cisco Ios 15.1(3)s4
Cisco Ios 15.3(2)s1
Cisco Ios 15.1(1)s
Cisco Ios 15.1(2)sy10
Cisco Ios 12.4(22)mda6
Cisco Ios 15.5(1)t1
Cisco Ios 15.4(2)s4
Cisco Ios 15.2(2)e5b
Cisco Ios 15.0(1)xa
Cisco Ios 15.3(2)s
Cisco Ios 15.2(2)sy
Cisco Ios 12.4(24)mda10
Cisco Ios 15.6(2)sp2
Cisco Ios 15.6(2)t3
Cisco Ios 15.1(3)mra1
Cisco Ios 15.6(1)t2
Cisco Ios 15.2(3)e2
Cisco Ios 12.4(22)xr12
Cisco Ios 12.4(24)mdb15
9.1
CVSSv3
CVE-2023-20186
A vulnerability in the Authentication, Authorization, and Accounting (AAA) feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote malicious user to bypass command authorization and copy files to or from the file system of an affected device u...
Cisco Ios 15.2(4)ea
Cisco Ios 15.4(2)s2
Cisco Ios 15.0(2)ex4
Cisco Ios 15.1(3)s4
Cisco Ios 15.3(2)s1
Cisco Ios 15.1(1)s
Cisco Ios 15.1(2)sy10
Cisco Ios 15.5(1)t1
Cisco Ios 15.4(2)s4
Cisco Ios 15.2(2)e5b
Cisco Ios 15.0(1)ey
Cisco Ios 15.0(1)xa
Cisco Ios 15.3(2)s
Cisco Ios 12.2(60)ez7
Cisco Ios 12.2(58)ex
Cisco Ios 15.2(2)sy
Cisco Ios 15.6(2)sp2
Cisco Ios 15.6(2)t3
Cisco Ios 15.1(3)mra1
Cisco Ios 15.6(1)t2
Cisco Ios 15.2(3)e2
Cisco Ios 15.1(2)sg4
7.5
CVSSv3
CVE-2023-20187
A vulnerability in the Multicast Leaf Recycle Elimination (mLRE) feature of Cisco IOS XE Software for Cisco ASR 1000 Series Aggregation Services Routers could allow an unauthenticated, remote malicious user to cause the affected device to reload, resulting in a denial of service ...
Cisco Ios Xe 3.7.1s
Cisco Ios Xe 3.7.2s
Cisco Ios Xe 3.7.2ts
Cisco Ios Xe 3.7.3s
Cisco Ios Xe 3.7.4s
Cisco Ios Xe 3.7.5s
Cisco Ios Xe 3.7.6s
Cisco Ios Xe 3.7.7s
Cisco Ios Xe 3.8.0s
Cisco Ios Xe 3.8.1s
Cisco Ios Xe 3.8.2s
Cisco Ios Xe 3.9.0s
Cisco Ios Xe 3.9.1s
Cisco Ios Xe 3.9.2s
Cisco Ios Xe 3.10.0s
Cisco Ios Xe 3.10.1s
Cisco Ios Xe 3.10.1xbs
Cisco Ios Xe 3.10.2s
Cisco Ios Xe 3.10.3s
Cisco Ios Xe 3.10.4s
Cisco Ios Xe 3.10.5s
Cisco Ios Xe 3.10.6s
6.5
CVSSv3
CVE-2023-20067
A vulnerability in the HTTP-based client profiling feature of Cisco IOS XE Software for Wireless LAN Controllers (WLCs) could allow an unauthenticated, adjacent malicious user to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insuffi...
Cisco Ios Xe 16.10.1
Cisco Ios Xe 16.12.1
Cisco Ios Xe 16.11.1
Cisco Ios Xe 17.1.1
Cisco Ios Xe 16.11.1a
Cisco Ios Xe 16.12.1t
Cisco Ios Xe 16.11.2
Cisco Ios Xe 16.12.1s
Cisco Ios Xe 16.11.1c
Cisco Ios Xe 16.11.1b
Cisco Ios Xe 16.10.1s
Cisco Ios Xe 16.10.1e
Cisco Ios Xe 16.12.4
Cisco Ios Xe 16.12.8
Cisco Ios Xe 16.12.3
Cisco Ios Xe 17.2.1
Cisco Ios Xe 17.4.1
Cisco Ios Xe 17.1.1s
Cisco Ios Xe 16.12.2t
Cisco Ios Xe 16.12.2s
Cisco Ios Xe 17.1.1t
Cisco Ios Xe 17.2.1a
8.6
CVSSv3
CVE-2023-20027
A vulnerability in the implementation of the IPv4 Virtual Fragmentation Reassembly (VFR) feature of Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to imprope...
Cisco Ios Xe 3.9.0as
Cisco Ios Xe 3.9.1s
Cisco Ios Xe 3.9.2s
Cisco Ios Xe 3.10.0s
Cisco Ios Xe 3.10.1s
Cisco Ios Xe 3.10.2as
Cisco Ios Xe 3.10.2s
Cisco Ios Xe 3.10.2ts
Cisco Ios Xe 3.10.3s
Cisco Ios Xe 3.10.4s
Cisco Ios Xe 3.10.5s
Cisco Ios Xe 3.10.6s
Cisco Ios Xe 3.10.7s
Cisco Ios Xe 3.10.8as
Cisco Ios Xe 3.10.8s
Cisco Ios Xe 3.10.9s
Cisco Ios Xe 3.10.10s
Cisco Ios Xe 3.11.0s
Cisco Ios Xe 3.11.1s
Cisco Ios Xe 3.11.2s
Cisco Ios Xe 3.11.3s
Cisco Ios Xe 3.11.4s
7.5
CVSSv3
CVE-2023-20080
A vulnerability in the IPv6 DHCP version 6 (DHCPv6) relay and server features of Cisco IOS and IOS XE Software could allow an unauthenticated, remote malicious user to trigger a denial of service (DoS) condition. This vulnerability is due to insufficient validation of data bounda...
Cisco Ios 15.2(4)ea
Cisco Ios 15.4(2)s2
Cisco Ios Xe 3.13.2s
Cisco Ios 15.3(2)s1
Cisco Ios Xe 3.10.6s
Cisco Ios 15.1(2)sy10
Cisco Ios Xe 3.6.5be
Cisco Ios Xe 3.13.6s
Cisco Ios 15.5(1)t1
Cisco Ios 15.4(2)s4
Cisco Ios 15.2(2)e5b
Cisco Ios 15.3(2)s
Cisco Ios Xe 3.14.4s
Cisco Ios Xe 3.7.2ts
Cisco Ios 15.2(2)sy
Cisco Ios 15.6(2)sp2
Cisco Ios Xe 3.7.4e
Cisco Ios Xe 3.15.1cs
Cisco Ios 15.6(2)t3
Cisco Ios Xe 3.9.0e
Cisco Ios 15.6(1)t2
Cisco Ios 15.2(3)e2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »