Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ios xr vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-20191
A vulnerability in the access control list (ACL) processing on MPLS interfaces in the ingress direction of Cisco IOS XR Software could allow an unauthenticated, remote malicious user to bypass a configured ACL. This vulnerability is due to incomplete support for this feature. An ...
Cisco Ios Xr 7.10
Cisco Ios Xr
NA
CVE-2023-20135
A vulnerability in Cisco IOS XR Software image verification checks could allow an authenticated, local malicious user to execute arbitrary code on the underlying operating system. This vulnerability is due to a time-of-check, time-of-use (TOCTOU) race condition when an install qu...
Cisco Ios Xr
NA
CVE-2023-20233
A vulnerability in the Connectivity Fault Management (CFM) feature of Cisco IOS XR Software could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to incorrect processing of invalid conti...
Cisco Ios Xr 7.9.0
Cisco Ios Xr
NA
CVE-2023-20236
A vulnerability in the iPXE boot function of Cisco IOS XR software could allow an authenticated, local malicious user to install an unverified software image on an affected device. This vulnerability is due to insufficient image verification. An attacker could exploit this vulner...
Cisco Ios Xr
NA
CVE-2023-20064
A vulnerability in the GRand Unified Bootloader (GRUB) for Cisco IOS XR Software could allow an unauthenticated attacker with physical access to the device to view sensitive files on the console using the GRUB bootloader command line. This vulnerability is due to the inclusion of...
Cisco Ios Xr
NA
CVE-2023-20049
A vulnerability in the bidirectional forwarding detection (BFD) hardware offload feature of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers, ASR 9902 Compact High-Performance Routers, and ASR 9903 Compact High-Performance Routers could allow an unauth...
Cisco Ios Xr
Cisco Ios Xr 7.7
NA
CVE-2021-27854
Layer 2 network filtering capabilities such as IPv6 RA guard can be bypassed using combinations of VLAN 0 headers, LLC/SNAP headers, and converting frames from Ethernet to Wifi and its reverse.
Ieee Ieee 802.2
Ietf P802.1q
NA
CVE-2021-27861
Layer 2 network filtering capabilities such as IPv6 RA guard can be bypassed using LLC/SNAP headers with invalid length (and optionally VLAN0 headers)
Ieee Ieee 802.2
Ietf P802.1q
NA
CVE-2021-27862
Layer 2 network filtering capabilities such as IPv6 RA guard can be bypassed using LLC/SNAP headers with invalid length and Ethernet to Wifi frame conversion (and optionally VLAN0 headers).
Ieee Ieee 802.2
Ietf P802.1q
NA
CVE-2021-27853
Layer 2 network filtering capabilities such as IPv6 RA guard or ARP inspection can be bypassed using combinations of VLAN 0 headers and LLC/SNAP headers.
Ieee Ieee 802.2
Ietf P802.1q
Cisco Catalyst 6503-e Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst 6504-e Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst 6506-e Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst 6509-e Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst 6509-neb-a Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst 6509-v-e Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst 6513-e Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst 6807-xl Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst 6840-x Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst 6880-x Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst C6816-x-le Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst C6824-x-le-40g Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst C6832-x-le Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst C6840-x-le-40g Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst 6800ia Firmware 15.5\\(01.01.85\\)sy07
Cisco Ios Xe 17.4.1
Cisco Ios Xe 17.6.1
Cisco Ios Xe 17.3.3
Cisco Ios Xe 15.2\\(07\\)e03
Cisco Ios Xe 15.2\\(07\\)e02
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »