Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco staros vulnerabilities and exploits
(subscribe to this query)
8.6
CVSSv3
CVE-2021-1353
A vulnerability in the IPv4 protocol handling of Cisco StarOS could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a memory leak that occurs during packet processing. An attacker coul...
Cisco Staros
Cisco Virtualized Packet Core-single Instance -
6.5
CVSSv3
CVE-2021-1145
A vulnerability in the Secure FTP (SFTP) of Cisco StarOS for Cisco ASR 5000 Series Routers could allow an authenticated, remote malicious user to read arbitrary files on an affected device. To exploit this vulnerability, the attacker would need to have valid credentials on the af...
Cisco Staros
6.7
CVSSv3
CVE-2020-3601
A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local malicious user to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker cou...
Cisco Staros
6.7
CVSSv3
CVE-2020-3602
A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local malicious user to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker cou...
Cisco Staros
8.6
CVSSv3
CVE-2020-3500
A vulnerability in the IPv6 implementation of Cisco StarOS could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient validation of incoming IPv6 traffic. An attacker could exp...
Cisco Staros
NA
CVE-2020-3324
A vulnerability in the IPv6 implementation of Cisco StarOS could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient validation of incoming IPv6 traffic. An attacker could exploit t...
5.3
CVSSv3
CVE-2020-3244
A vulnerability in the Enhanced Charging Service (ECS) functionality of Cisco ASR 5000 Series Aggregation Services Routers could allow an unauthenticated, remote malicious user to bypass the traffic classification rules on an affected device. The vulnerability is due to insuffici...
Cisco Staros
10
CVSSv3
CVE-2020-11896
The Treck TCP/IP stack prior to 6.0.1.66 allows Remote Code Execution, related to IPv4 tunneling.
Treck Tcp\\/ip
3 Github repositories
1 Article
10
CVSSv3
CVE-2020-11897
The Treck TCP/IP stack prior to 5.0.1.35 has an Out-of-Bounds Write via multiple malformed IPv6 packets.
Treck Tcp\\/ip
1 Github repository
1 Article
9.1
CVSSv3
CVE-2020-11898
The Treck TCP/IP stack prior to 6.0.1.66 improperly handles an IPv4/ICMPv4 Length Parameter Inconsistency, which might allow remote malicious users to trigger an information leak.
Treck Tcp\\/ip
1 Github repository
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »