Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco talos vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv2
CVE-2012-0385
The Smart Install feature in Cisco IOS 12.2, 15.0, 15.1, and 15.2 allows remote malicious users to cause a denial of service (device reload) by sending a malformed Smart Install message over TCP, aka Bug ID CSCtt16051.
Cisco Ios 15.1
Cisco Ios 15.0
Cisco Ios 12.2
Cisco Ios 15.2
3.5
CVSSv2
CVE-2015-7851
Directory traversal vulnerability in the save_config function in ntpd in ntp_control.c in NTP prior to 4.2.8p4, when used on systems that do not use '\' or '/' characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite ...
Ntp Ntp 4.2.8
Ntp Ntp
6.5
CVSSv2
CVE-2015-7849
Use-after-free vulnerability in ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote authenticated users to possibly execute arbitrary code or cause a denial of service (crash) via crafted packets.
Ntp Ntp 4.2.8
Ntp Ntp
Netapp Oncommand Balance -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Netapp Oncommand Unified Manager -
Netapp Oncommand Performance Manager -
6.5
CVSSv2
CVE-2015-7854
Buffer overflow in the password management functionality in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted key file.
Ntp Ntp 4.2.8
Ntp Ntp
Netapp Oncommand Balance -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Netapp Oncommand Unified Manager -
Netapp Oncommand Performance Manager -
7.8
CVSSv2
CVE-2016-6385
Memory leak in the Smart Install client implementation in Cisco IOS 12.2 and 15.0 up to and including 15.2 and IOS XE 3.2 up to and including 3.8 allows remote malicious users to cause a denial of service (memory consumption) via crafted image-list parameters, aka Bug ID CSCuy823...
Cisco Ios 15.0(2)ex4
Cisco Ios 12.2(35)se5
Cisco Ios 15.0(1)ey
Cisco Ios 12.2(35)ex
Cisco Ios 15.0(2)ed1
Cisco Ios 12.2(55)se2
Cisco Ios 12.2(60)ez7
Cisco Ios 12.2(58)ex
Cisco Ios 15.2(3)e2
Cisco Ios 15.1(2)sg4
Cisco Ios 15.1(2)sg1
Cisco Ios 15.0(2)ey1
Cisco Ios 12.2(55)se1
Cisco Ios 15.0(2)ec
Cisco Ios 15.0(2)eh
Cisco Ios 12.2(55)se10
Cisco Ios 12.2(44)se3
Cisco Ios Xe 3.7.1e
Cisco Ios Xe 3.6.4e
Cisco Ios 15.2(3m)e3
Cisco Ios 12.2(46)se
Cisco Ios Xe 3.3.4se
5
CVSSv2
CVE-2015-7848
An integer overflow can occur in NTP-dev.4.3.70 leading to an out-of-bounds memory copy operation when processing a specially crafted private mode packet. The crafted packet needs to have the correct message authentication code and a valid timestamp. When processed by the NTP dae...
Ntp Ntp-dev 4.3.70
7.5
CVSSv2
CVE-2015-7853
The datalen parameter in the refclock driver in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to execute arbitrary code or cause a denial of service (crash) via a negative input value.
Ntp Ntp 4.2.8
Ntp Ntp
Netapp Oncommand Balance -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Netapp Oncommand Unified Manager -
Netapp Oncommand Performance Manager -
7.8
CVSSv2
CVE-2016-1349
The Smart Install client implementation in Cisco IOS 12.2, 15.0, and 15.2 and IOS XE 3.2 up to and including 3.7 allows remote malicious users to cause a denial of service (device reload) via crafted image list parameters in a Smart Install packet, aka Bug ID CSCuv45410.
Cisco Ios Xe 3.4sg 3.4.2sg
Cisco Ios Xe 3.4sg 3.4.6sg
Cisco Ios Xe 3.5e 3.5.2e
Cisco Ios Xe 3.5e 3.5.1e
Cisco Ios Xe 3.6e 3.6.2e
Cisco Ios Xe 3.6e 3.6.1e
Samsung X14j Firmware T-ms14jakucb-1102.5
Cisco Ios Xe 3.3se 3.3.1se
Cisco Ios Xe 3.6e 3.6.0e
Cisco Ios Xe 3.2se 3.2.3se
Cisco Ios Xe 3.4sg 3.4.5sg
Cisco Ios Xe 3.4sg 3.4.1sg
Cisco Ios Xe 3.3se 3.3.0se
Cisco Ios Xe 3.5e 3.5.3e
Cisco Ios Xe 3.3xo 3.3.0xo
Cisco Ios Xe 3.2se 3.2.1se
Sun Opensolaris Snv 124
Cisco Ios Xe 3.3se 3.3.3se
Cisco Ios Xe 3.7e 3.7.0e
Cisco Ios Xe 3.7e 3.7.1e
Cisco Ios Xe 3.7e 3.7.2e
Cisco Ios Xe 3.2se 3.2.0se
7.8
CVSSv2
CVE-2013-1146
The Smart Install client functionality in Cisco IOS 12.2 and 15.0 up to and including 15.3 on Catalyst switches allows remote malicious users to cause a denial of service (device reload) via crafted image list parameters in Smart Install packets, aka Bug ID CSCub55790.
Cisco Ios 15.1
Cisco Ios 15.0
Cisco Ios 15.3
Cisco Ios 15.0(1)se
Cisco Ios 12.2
Cisco Ios 15.2
7.5
CVSSv2
CVE-2015-7705
The rate limiting feature in NTP 4.x prior to 4.2.8p4 and 4.3.x prior to 4.3.77 allows remote malicious users to have unspecified impact via a large number of crafted requests.
Ntp Ntp 4.2.8
Ntp Ntp
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Netapp Oncommand Unified Manager -
Netapp Oncommand Performance Manager -
Citrix Xenserver 7.0
Citrix Xenserver 6.0.2
Citrix Xenserver 6.5
Citrix Xenserver 6.2.0
Siemens Tim 4r-ie Firmware
Siemens Tim 4r-ie Dnp3 Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »