Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
catalyst vulnerabilities and exploits
(subscribe to this query)
3.3
CVSSv2
CVE-2017-12213
A vulnerability in the dynamic access control list (ACL) feature of Cisco IOS XE Software running on Cisco Catalyst 4000 Series Switches could allow an unauthenticated, adjacent malicious user to cause dynamic ACL assignment to fail and the port to fail open. This could allow the...
Cisco Ios Xe -
6.1
CVSSv2
CVE-2020-3428
A vulnerability in the WLAN Local Profiling feature of Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9000 Family could allow an unauthenticated, adjacent malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due...
Cisco Ios Xe -
NA
CVE-2023-2022710
A vulnerability in the Layer 2 Tunneling Protocol (L2TP) feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper handling of certain L2TP packets. An...
NA
CVE-2022-20855
A vulnerability in the self-healing functionality of Cisco IOS XE Software for Embedded Wireless Controllers on Catalyst Access Points could allow an authenticated, local malicious user to escape the restricted controller shell and execute arbitrary commands on the underlying ope...
Cisco Ios Xe 17.6.1
1 Github repository
8.5
CVSSv2
CVE-2022-20739
A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local malicious user to execute arbitrary commands on the underlying operating system as the root user. The attacker must be authenticated on the affected system as a low-privileged user to ...
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager 20.7
5.7
CVSSv2
CVE-2020-3390
A vulnerability in Simple Network Management Protocol (SNMP) trap generation for wireless clients of the Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9000 Family could allow an unauthenticated, adjacent malicious user to cause the device to unexpectedly reload...
Cisco Ios Xe 16.12.1
NA
CVE-2023-20235
A vulnerability in the on-device application development workflow feature for the Cisco IOx application hosting infrastructure in Cisco IOS XE Software could allow an authenticated, remote malicious user to access the underlying operating system as the root user. This vulnerabili...
Cisco Ios Xe
NA
CVE-2023-20034
Vulnerability in the Elasticsearch database used in the of Cisco SD-WAN vManage software could allow an unauthenticated, remote malicious user to access the Elasticsearch configuration database of an affected device with the privileges of the elasticsearch user. These vulnerabili...
Cisco Sd-wan
Cisco Sd-wan 20.7
Cisco Sd-wan 20.6
7.1
CVSSv2
CVE-2014-2124
Cisco IOS 15.1(2)SY3 and previous versions, when used with Supervisor Engine 2T (aka Sup2T) on Catalyst 6500 devices, allows remote malicious users to cause a denial of service (device crash) via crafted multicast packets, aka Bug ID CSCuf60783.