Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco iox vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2023-20273
A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote malicious user to inject commands with the privileges of root. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending c...
Cisco Ios Xe
2 Metasploit modules
4 Github repositories
1 Article
10
CVSSv3
CVE-2023-20198
Cisco is providing an update for the ongoing investigation into observed exploitation of the web UI feature in Cisco IOS XE Software. We are updating the list of fixed releases and adding the Software Checker. Our investigation has determined that the actors exploited two previou...
Cisco Ios Xe
3 Metasploit modules
35 Github repositories
1 Article
7.5
CVSSv3
CVE-2023-44487
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
Ietf Http 2.0
Nghttp2 Nghttp2
Netty Netty
Envoyproxy Envoy 1.27.0
Envoyproxy Envoy 1.26.4
Envoyproxy Envoy 1.25.9
Envoyproxy Envoy 1.24.10
Eclipse Jetty
Caddyserver Caddy
Golang Http2
Golang Go
Golang Networking
F5 Big-ip Analytics
F5 Big-ip Policy Enforcement Manager
F5 Big-ip Local Traffic Manager
F5 Big-ip Link Controller
F5 Big-ip Global Traffic Manager
F5 Big-ip Fraud Protection Service
F5 Big-ip Domain Name System
F5 Big-ip Application Security Manager
F5 Big-ip Application Acceleration Manager
F5 Big-ip Advanced Firewall Manager
35 Github repositories
2 Articles
8.8
CVSSv3
CVE-2023-20235
A vulnerability in the on-device application development workflow feature for the Cisco IOx application hosting infrastructure in Cisco IOS XE Software could allow an authenticated, remote malicious user to access the underlying operating system as the root user. This vulnerabili...
Cisco Ios Xe
7.8
CVSSv3
CVE-2023-20065
A vulnerability in the Cisco IOx application hosting subsystem of Cisco IOS XE Software could allow an authenticated, local malicious user to elevate privileges to root on an affected device. This vulnerability is due to insufficient restrictions on the hosted application. An att...
Cisco Ios Xe 17.6.3
Cisco Ios Xe 17.11.1
8.8
CVSSv3
CVE-2023-20076
A vulnerability in the Cisco IOx application hosting environment could allow an authenticated, remote malicious user to execute arbitrary commands as root on the underlying host operating system. This vulnerability is due to incomplete sanitization of parameters that are passed i...
Cisco Ic3000 Industrial Compute Gateway
Cisco Ios Xe 17.10.0
Cisco Ios Xe
Cisco Iox -
Cisco Cgr1240 Firmware
Cisco Cgr1000 Firmware
Cisco Ir510 Wpan Firmware
Cisco 829 Industrial Integrated Services Router Firmware
Cisco 829 Industrial Integrated Services Router Firmware 15.9(3)m
Cisco 829 Industrial Integrated Services Router Firmware 15.9(3)m1
Cisco 829 Industrial Integrated Services Router Firmware 15.9(3)m2
Cisco 829 Industrial Integrated Services Router Firmware 15.9(3)m2a
Cisco 829 Industrial Integrated Services Router Firmware 15.9(3)m3
Cisco 829 Industrial Integrated Services Router Firmware 15.9(3)m4
Cisco 829 Industrial Integrated Services Router Firmware 15.9(3)m4a
Cisco 829 Industrial Integrated Services Router Firmware 15.9(3)m5
Cisco 829 Industrial Integrated Services Router Firmware 15.9(3)m6a
Cisco 829 Industrial Integrated Services Router Firmware 15.9(3)m6b
Cisco 807 Industrial Integrated Services Router Firmware
Cisco 807 Industrial Integrated Services Router Firmware 15.9(3)m
Cisco 807 Industrial Integrated Services Router Firmware 15.9(3)m1
Cisco 807 Industrial Integrated Services Router Firmware 15.9(3)m2
6.7
CVSSv3
CVE-2022-20677
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an malicious user to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying host operating system, install appl...
Cisco Ios 17.6.1
7.2
CVSSv3
CVE-2022-20718
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an malicious user to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying host operating system, install appl...
Cisco Ios Xe 16.6.1
Cisco Ios Xe 16.4.1
Cisco Ios Xe 16.3.1
Cisco Ios Xe 16.3.1a
Cisco Ios Xe 16.3.2
Cisco Ios Xe 16.3.3
Cisco Ios Xe 16.5.1
Cisco Ios Xe 16.5.1a
Cisco Ios Xe 16.3.4
Cisco Ios Xe 16.5.1b
Cisco Ios Xe 16.4.2
Cisco Ios Xe 16.3.5b
Cisco Ios Xe 16.3.6
Cisco Ios Xe 16.6.3
Cisco Ios Xe 16.8.1
Cisco Ios Xe 16.7.1
Cisco Ios Xe 16.6.2
Cisco Ios Xe 16.9.1
Cisco Ios Xe 16.3.5
Cisco Ios Xe 16.5.2
Cisco Ios Xe 16.8.1a
Cisco Ios Xe 16.8.1s
7.2
CVSSv3
CVE-2022-20719
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an malicious user to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying host operating system, install appl...
Cisco Ios Xe 16.6.1
Cisco Ios Xe 16.4.1
Cisco Ios Xe 16.3.1
Cisco Ios Xe 16.3.1a
Cisco Ios Xe 16.3.2
Cisco Ios Xe 16.3.3
Cisco Ios Xe 16.5.1
Cisco Ios Xe 16.5.1a
Cisco Ios Xe 16.3.4
Cisco Ios Xe 16.5.1b
Cisco Ios Xe 16.4.2
Cisco Ios Xe 16.3.5b
Cisco Ios Xe 16.3.6
Cisco Ios Xe 16.6.3
Cisco Ios Xe 16.8.1
Cisco Ios Xe 16.7.1
Cisco Ios Xe 16.6.2
Cisco Ios Xe 16.9.1
Cisco Ios Xe 16.3.5
Cisco Ios Xe 16.5.2
Cisco Ios Xe 16.8.1a
Cisco Ios Xe 16.8.1s
7.2
CVSSv3
CVE-2022-20720
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an malicious user to inject arbitrary commands into the underlying host operating system, execute arbitrary code on the underlying host operating system, install appl...
Cisco Ios Xe 16.6.1
Cisco Ios Xe 16.4.1
Cisco Ios Xe 16.3.1
Cisco Ios Xe 16.3.1a
Cisco Ios Xe 16.3.2
Cisco Ios Xe 16.3.3
Cisco Ios Xe 16.5.1
Cisco Ios Xe 16.5.1a
Cisco Ios Xe 16.3.4
Cisco Ios Xe 16.5.1b
Cisco Ios Xe 16.4.2
Cisco Ios Xe 16.3.5b
Cisco Ios Xe 16.3.6
Cisco Ios Xe 16.6.3
Cisco Ios Xe 16.8.1
Cisco Ios Xe 16.7.1
Cisco Ios Xe 16.6.2
Cisco Ios Xe 16.9.1
Cisco Ios Xe 16.3.5
Cisco Ios Xe 16.5.2
Cisco Ios Xe 16.8.1a
Cisco Ios Xe 16.8.1s
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »