Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco staros vulnerabilities and exploits
(subscribe to this query)
10
CVSSv3
CVE-2020-11896
The Treck TCP/IP stack prior to 6.0.1.66 allows Remote Code Execution, related to IPv4 tunneling.
Treck Tcp\\/ip
3 Github repositories
1 Article
10
CVSSv3
CVE-2020-11897
The Treck TCP/IP stack prior to 5.0.1.35 has an Out-of-Bounds Write via multiple malformed IPv6 packets.
Treck Tcp\\/ip
1 Github repository
1 Article
9.1
CVSSv3
CVE-2020-11898
The Treck TCP/IP stack prior to 6.0.1.66 improperly handles an IPv4/ICMPv4 Length Parameter Inconsistency, which might allow remote malicious users to trigger an information leak.
Treck Tcp\\/ip
1 Github repository
1 Article
9
CVSSv3
CVE-2020-11901
The Treck TCP/IP stack prior to 6.0.1.66 allows Remote Code execution via a single invalid DNS response.
Treck Tcp\\/ip
1 Github repository
8.8
CVSSv3
CVE-2023-20046
A vulnerability in the key-based SSH authentication feature of Cisco StarOS Software could allow an authenticated, remote malicious user to elevate privileges on an affected device. This vulnerability is due to insufficient validation of user-supplied credentials. An attacker cou...
Cisco Staros
Cisco Staros 21.23.n
Cisco Staros 21.24
Cisco Staros 21.27.m
Cisco Staros 21.28.m
8.8
CVSSv3
CVE-2021-1539
Multiple vulnerabilities in the authorization process of Cisco ASR 5000 Series Software (StarOS) could allow an authenticated, remote malicious user to bypass authorization and execute a subset of CLI commands on an affected device. For more information about these vulnerabilitie...
Cisco Staros
Cisco Virtualized Packet Core -
8.8
CVSSv3
CVE-2017-3819
A privilege escalation vulnerability in the Secure Shell (SSH) subsystem in the StarOS operating system for Cisco ASR 5000 Series, ASR 5500 Series, ASR 5700 Series devices, and Cisco Virtualized Packet Core could allow an authenticated, remote malicious user to gain unrestricted,...
Cisco Asr 5000 Series Software 18.1.0
Cisco Asr 5000 Series Software 19.0.m0.60737
Cisco Asr 5000 Series Software 20.0.0
Cisco Asr 5000 Series Software 19.0.m0.61045
Cisco Asr 5000 Series Software 18.1 Base
Cisco Asr 5000 Series Software 18.0.0.57828
Cisco Asr 5000 Series Software 19.0.m0.60828
Cisco Asr 5000 Series Software 18.4.0
Cisco Asr 5000 Series Software 18.3 Base
Cisco Asr 5000 Series Software 18.1.0.59776
Cisco Asr 5000 Series Software 19.1.0.61559
Cisco Virtualized Packet Core V19.0 Base
Cisco Virtualized Packet Core V18.0 Base
Cisco Asr 5000 Series Software 19.3.0
Cisco Asr 5000 Series Software 18.0.0.59211
Cisco Asr 5000 Series Software 18.1.0.59780
Cisco Asr 5000 Series Software 19.2.0
Cisco Asr 5000 Series Software 18.3.0
Cisco Virtualized Packet Core V20.0 Base
Cisco Asr 5000 Series Software 18.0.l0.59219
Cisco Asr 5000 Series Software 19.0.1
Cisco Asr 5000 Series Software 18.0.0.59167
8.6
CVSSv3
CVE-2021-1353
A vulnerability in the IPv4 protocol handling of Cisco StarOS could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a memory leak that occurs during packet processing. An attacker coul...
Cisco Staros
Cisco Virtualized Packet Core-single Instance -
8.6
CVSSv3
CVE-2020-3500
A vulnerability in the IPv6 implementation of Cisco StarOS could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient validation of incoming IPv6 traffic. An attacker could exp...
Cisco Staros
8.6
CVSSv3
CVE-2018-0369
A vulnerability in the reassembly logic for fragmented IPv4 packets of Cisco StarOS running on virtual platforms could allow an unauthenticated, remote malicious user to trigger a reload of the npusim process, resulting in a denial of service (DoS) condition. There are four insta...
Cisco Staros
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »