Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco ios xe 17.3.4c vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2023-20273
A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote malicious user to inject commands with the privileges of root. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending c...
Cisco Ios Xe
Cisco Ios Xe
2 Metasploit modules
4 Github repositories
1 Article
10
CVSSv3
CVE-2023-20198
Cisco is providing an update for the ongoing investigation into observed exploitation of the web UI feature in Cisco IOS XE Software. We are updating the list of fixed releases and adding the Software Checker. Our investigation has determined that the actors exploited two previou...
Cisco Ios Xe
3 Metasploit modules
35 Github repositories
1 Article
7.5
CVSSv3
CVE-2023-20227
A vulnerability in the Layer 2 Tunneling Protocol (L2TP) feature of Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper handling of certain L2TP packe...
Cisco Ios Xe 16.8.1
Cisco Ios Xe 16.8.1a
Cisco Ios Xe 16.8.1b
Cisco Ios Xe 16.8.1c
Cisco Ios Xe 16.8.1d
Cisco Ios Xe 16.8.1e
Cisco Ios Xe 16.8.1s
Cisco Ios Xe 16.8.2
Cisco Ios Xe 16.8.3
Cisco Ios Xe 16.9.1
Cisco Ios Xe 16.9.1a
Cisco Ios Xe 16.9.1b
Cisco Ios Xe 16.9.1s
Cisco Ios Xe 16.9.2
Cisco Ios Xe 16.9.3
Cisco Ios Xe 16.9.4
Cisco Ios Xe 16.9.5
Cisco Ios Xe 16.9.5f
Cisco Ios Xe 16.9.6
Cisco Ios Xe 16.9.7
Cisco Ios Xe 16.9.8
Cisco Ios Xe 16.10.1
8.8
CVSSv3
CVE-2023-20231
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote malicious user to perform an injection attack against an affected device. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sendin...
Cisco Ios Xe 16.12.4
Cisco Ios Xe 16.12.4a
Cisco Ios Xe 16.12.5
Cisco Ios Xe 16.12.5a
Cisco Ios Xe 16.12.5b
Cisco Ios Xe 16.12.6
Cisco Ios Xe 16.12.6a
Cisco Ios Xe 16.12.7
Cisco Ios Xe 16.12.8
Cisco Ios Xe 16.12.9
Cisco Ios Xe 17.2.2
Cisco Ios Xe 17.2.3
Cisco Ios Xe 17.3.1
Cisco Ios Xe 17.3.1a
Cisco Ios Xe 17.3.1w
Cisco Ios Xe 17.3.1x
Cisco Ios Xe 17.3.1z
Cisco Ios Xe 17.3.2
Cisco Ios Xe 17.3.3
Cisco Ios Xe 17.3.4
Cisco Ios Xe 17.3.4a
Cisco Ios Xe 17.3.4b
6.6
CVSSv3
CVE-2023-20109
A vulnerability in the Cisco Group Encrypted Transport VPN (GET VPN) feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker who has administrative control of either a group member or a key server to execute arbitrary code on an affec...
Cisco Ios 15.2\\(4\\)ea
Cisco Ios 15.4\\(2\\)s2
Cisco Ios 15.0\\(2\\)ex4
Cisco Ios 15.1\\(3\\)s4
Cisco Ios 15.3\\(2\\)s1
Cisco Ios 15.1\\(1\\)s
Cisco Ios 15.1\\(2\\)sy10
Cisco Ios 12.4\\(22\\)mda6
Cisco Ios 15.5\\(1\\)t1
Cisco Ios 15.4\\(2\\)s4
Cisco Ios 15.2\\(2\\)e5b
Cisco Ios 15.0\\(1\\)xa
Cisco Ios 15.3\\(2\\)s
Cisco Ios 15.2\\(2\\)sy
Cisco Ios 12.4\\(24\\)mda10
Cisco Ios 15.6\\(2\\)sp2
Cisco Ios 15.6\\(2\\)t3
Cisco Ios 15.1\\(3\\)mra1
Cisco Ios 15.6\\(1\\)t2
Cisco Ios 15.2\\(3\\)e2
Cisco Ios 12.4\\(22\\)xr12
Cisco Ios 12.4\\(24\\)mdb15
9.1
CVSSv3
CVE-2023-20186
A vulnerability in the Authentication, Authorization, and Accounting (AAA) feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote malicious user to bypass command authorization and copy files to or from the file system of an affected device u...
Cisco Ios 15.2\\(4\\)ea
Cisco Ios 15.4\\(2\\)s2
Cisco Ios 15.0\\(2\\)ex4
Cisco Ios 15.1\\(3\\)s4
Cisco Ios 15.3\\(2\\)s1
Cisco Ios 15.1\\(1\\)s
Cisco Ios 15.1\\(2\\)sy10
Cisco Ios 15.5\\(1\\)t1
Cisco Ios 15.4\\(2\\)s4
Cisco Ios 15.2\\(2\\)e5b
Cisco Ios 15.0\\(1\\)ey
Cisco Ios 15.0\\(1\\)xa
Cisco Ios 15.3\\(2\\)s
Cisco Ios 12.2\\(60\\)ez7
Cisco Ios 12.2\\(58\\)ex
Cisco Ios 15.2\\(2\\)sy
Cisco Ios 15.6\\(2\\)sp2
Cisco Ios 15.6\\(2\\)t3
Cisco Ios 15.1\\(3\\)mra1
Cisco Ios 15.6\\(1\\)t2
Cisco Ios 15.2\\(3\\)e2
Cisco Ios 15.1\\(2\\)sg4
6.5
CVSSv3
CVE-2023-20067
A vulnerability in the HTTP-based client profiling feature of Cisco IOS XE Software for Wireless LAN Controllers (WLCs) could allow an unauthenticated, adjacent malicious user to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insuffi...
Cisco Ios Xe 16.10.1
Cisco Ios Xe 16.12.1
Cisco Ios Xe 16.11.1
Cisco Ios Xe 17.1.1
Cisco Ios Xe 16.11.1a
Cisco Ios Xe 16.12.1t
Cisco Ios Xe 16.11.2
Cisco Ios Xe 16.12.1s
Cisco Ios Xe 16.11.1c
Cisco Ios Xe 16.11.1b
Cisco Ios Xe 16.10.1s
Cisco Ios Xe 16.10.1e
Cisco Ios Xe 16.12.4
Cisco Ios Xe 16.12.8
Cisco Ios Xe 16.12.3
Cisco Ios Xe 17.2.1
Cisco Ios Xe 17.4.1
Cisco Ios Xe 17.1.1s
Cisco Ios Xe 16.12.2t
Cisco Ios Xe 16.12.2s
Cisco Ios Xe 17.1.1t
Cisco Ios Xe 17.2.1a
7.7
CVSSv3
CVE-2022-20920
A vulnerability in the SSH implementation of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote malicious user to cause an affected device to reload. This vulnerability is due to improper handling of resources during an exceptional situation. An att...
Cisco Ios 15.2\\(4\\)ea
Cisco Ios 15.4\\(2\\)s2
Cisco Ios 15.3\\(3\\)jnb3
Cisco Ios 3.5.3e
Cisco Ios 15.0\\(2\\)ex4
Cisco Ios 15.1\\(3\\)s4
Cisco Ios 15.3\\(2\\)s1
Cisco Ios 15.1\\(1\\)s
Cisco Ios 15.1\\(2\\)sy10
Cisco Ios 12.4\\(22\\)mda6
Cisco Ios 15.5\\(1\\)t1
Cisco Ios 15.4\\(2\\)s4
Cisco Ios 15.2\\(2\\)e5b
Cisco Ios 15.0\\(1\\)ey
Cisco Ios 15.3\\(3\\)jn
Cisco Ios 15.0\\(1\\)xa
Cisco Ios 15.3\\(2\\)s
Cisco Ios 15.3\\(3\\)jb
Cisco Ios 12.2\\(60\\)ez7
Cisco Ios 12.2\\(58\\)ex
Cisco Ios 15.3\\(3\\)jnb2
Cisco Ios 15.2\\(2\\)sy
7.5
CVSSv3
CVE-2022-20856
A vulnerability in the processing of Control and Provisioning of Wireless Access Points (CAPWAP) Mobility messages in Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) co...
Cisco Ios Xe 17.3.4c
6.7
CVSSv3
CVE-2022-20676
A vulnerability in the Tool Command Language (Tcl) interpreter of Cisco IOS XE Software could allow an authenticated, local malicious user to escalate from privilege level 15 to root-level privileges. This vulnerability is due to insufficient input validation of data that is pass...
Cisco Ios Xe 17.2.1
Cisco Ios Xe 17.4.1
Cisco Ios Xe 17.2.1a
Cisco Ios Xe 17.2.1v
Cisco Ios Xe 17.2.1r
Cisco Ios Xe 17.2.2
Cisco Ios Xe 17.3.1
Cisco Ios Xe 17.4.1a
Cisco Ios Xe 17.3.2
Cisco Ios Xe 17.4.1b
Cisco Ios Xe 17.3.1a
Cisco Ios Xe 17.3.2a
Cisco Ios Xe 17.3.1w
Cisco Ios Xe 17.2.3
Cisco Ios Xe 17.3.1x
Cisco Ios Xe 17.5.1
Cisco Ios Xe 16.12.1z2
Cisco Ios Xe 17.3.1z
Cisco Ios Xe 17.3.3
Cisco Ios Xe 17.3.3a
Cisco Ios Xe 17.4.1c
Cisco Ios Xe 17.5.1a
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »