Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco ios xr 4.3.1 vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv2
CVE-2015-0695
Cisco IOS XR 4.3.4 up to and including 5.3.0 on ASR 9000 devices, when uRPF, PBR, QoS, or an ACL is configured, does not properly handle bridge-group virtual interface (BVI) traffic, which allows remote malicious users to cause a denial of service (chip and card hangs and reloads...
Cisco Ios Xr 5.2.0
Cisco Ios Xr 5.2.1
Cisco Ios Xr 4.3.0
Cisco Ios Xr 4.3.1
Cisco Ios Xr 4.3.2
Cisco Ios Xr 5.1.1
Cisco Ios Xr 5.1.2
Cisco Ios Xr 5.1.0
Cisco Ios Xr 4.3.3
1 Article
6.1
CVSSv2
CVE-2014-3379
Cisco IOS XR 5.1 and previous versions on Network Convergence System 6000 devices allows remote malicious users to cause a denial of service (NPU and card hang or reload) via a malformed MPLS packet, aka Bug ID CSCuq10466.
Cisco Ios Xr 4.3.4
Cisco Ios Xr 4.3.2
Cisco Ios Xr 4.0.4
Cisco Ios Xr 4.0.3
Cisco Ios Xr 3.8.4
Cisco Ios Xr 3.8.3
Cisco Ios Xr 3.8.2
Cisco Ios Xr 3.6.3
Cisco Ios Xr 3.6.2
Cisco Ios Xr 3.5
Cisco Ios Xr 3.4.3
Cisco Ios Xr 3.3.1
Cisco Ios Xr 3.3
Cisco Ios Xr 3.1
Cisco Ios Xr 3.0.1
Cisco Ios Xr 5.1.0
Cisco Ios Xr 4.1.1
Cisco Ios Xr 4.1
Cisco Ios Xr 3.9.1
Cisco Ios Xr 3.9.0
Cisco Ios Xr 3.7.1
Cisco Ios Xr 3.7
4.6
CVSSv2
CVE-2016-1361
Cisco IOS XR up to and including 4.3.2 on Gigabit Switch Router (GSR) 12000 devices does not properly check for a Bidirectional Forwarding Detection (BFD) header in a UDP packet, which allows remote malicious users to cause a denial of service (line-card restart) via a crafted pa...
Cisco Ios Xr 4.0.3
Cisco Ios Xr 3.8.2
Cisco Ios Xr 4.2.0
Cisco Ios Xr 3.9.2
Cisco Ios Xr 4.2.1
Cisco Ios Xr 3.8.4
Cisco Ios Xr 3.4.3
Cisco Ios Xr 4.0.1
Cisco Ios Xr 3.5.4
Cisco Ios Xr 3.5.3
Cisco Ios Xr 3.6.0
Cisco Ios Xr 3.6.3
Cisco Ios Xr 3.9.1
Cisco Ios Xr 3.4.2
Cisco Ios Xr 3.4.1
Cisco Ios Xr 3.6.2
Cisco Ios Xr 3.6.1
Cisco Ios Xr 4.2.3
Cisco Ios Xr 4.2.2
Cisco Ios Xr 4.3.0
Cisco Ios Xr 3.5.2
Cisco Ios Xr 3.8.1
5
CVSSv2
CVE-2016-1407
Cisco IOS XR up to and including 5.3.2 mishandles Local Packet Transport Services (LPTS) flow-base entries, which allows remote malicious users to cause a denial of service (session drop) by making many connection attempts to open TCP ports, aka Bug ID CSCux95576.
Cisco Ios Xr 5.2.5
Cisco Ios Xr 5.2.3
Cisco Ios Xr 5.1.1.k9sec
Cisco Ios Xr 5.3.0
Cisco Ios Xr 4.3.3
Cisco Ios Xr 5.1.0
Cisco Ios Xr 4.2.2
Cisco Ios Xr 4.2.1
Cisco Ios Xr 4.0.11
Cisco Ios Xr 4.0.0
Cisco Ios Xr 4.1 Base
Cisco Ios Xr 3.8.2
Cisco Ios Xr 3.9.1
Cisco Ios Xr 3.5.3
Cisco Ios Xr 3.5.2
Cisco Ios Xr 3.4.2
Cisco Ios Xr 3.2.6
Cisco Ios Xr 3.4.0
Cisco Ios Xr 3.3.0
Cisco Ios Xr 2.0.0
Cisco Ios Xr 3.0.0
Cisco Ios Xr 5.0 Base
7.1
CVSSv2
CVE-2014-2176
Cisco IOS XR 4.1.2 up to and including 5.1.1 on ASR 9000 devices, when a Trident-based line card is used, allows remote malicious users to cause a denial of service (NP chip and line card reload) via malformed IPv6 packets, aka Bug ID CSCun71928.
Cisco Ios Xr 5.1.1
Cisco Ios Xr 5.1.0
Cisco Ios Xr 4.1.2
Cisco Ios Xr 4.2.0
Cisco Ios Xr 4.3.1
Cisco Asr 9001 -
Cisco Asr 9904 -
Cisco Asr 9006 -
Cisco Asr 9010 -
Cisco Asr 9912 -
Cisco Asr 9922 -
2.1
CVSSv2
CVE-2015-7975
The nextvar function in NTP prior to 4.2.8p6 and 4.3.x prior to 4.3.90 does not properly validate the length of its input, which allows an malicious user to cause a denial of service (application crash).
Ntp Ntp 4.3.0
Ntp Ntp 4.3.1
Ntp Ntp 4.3.16
Ntp Ntp 4.3.17
Ntp Ntp 4.3.18
Ntp Ntp 4.3.24
Ntp Ntp 4.3.25
Ntp Ntp 4.3.31
Ntp Ntp 4.3.32
Ntp Ntp 4.3.39
Ntp Ntp 4.3.4
Ntp Ntp 4.3.40
Ntp Ntp 4.3.47
Ntp Ntp 4.3.48
Ntp Ntp 4.3.54
Ntp Ntp 4.3.55
Ntp Ntp 4.3.62
Ntp Ntp 4.3.63
Ntp Ntp 4.3.7
Ntp Ntp 4.3.70
Ntp Ntp 4.3.77
Ntp Ntp 4.3.78
4
CVSSv2
CVE-2015-7976
The ntpq saveconfig command in NTP 4.1.2, 4.2.x prior to 4.2.8p6, 4.3, 4.3.25, 4.3.70, and 4.3.77 does not properly filter special characters, which allows malicious users to cause unspecified impact via a crafted filename.
Ntp Ntp 4.1.2
Ntp Ntp
Ntp Ntp 4.3.0
Ntp Ntp 4.3.1
Ntp Ntp 4.3.16
Ntp Ntp 4.3.17
Ntp Ntp 4.3.24
Ntp Ntp 4.3.25
Ntp Ntp 4.3.31
Ntp Ntp 4.3.32
Ntp Ntp 4.3.39
Ntp Ntp 4.3.4
Ntp Ntp 4.3.47
Ntp Ntp 4.3.48
Ntp Ntp 4.3.54
Ntp Ntp 4.3.55
Ntp Ntp 4.3.61
Ntp Ntp 4.3.62
Ntp Ntp 4.3.63
Ntp Ntp 4.3.7
Ntp Ntp 4.3.70
Ntp Ntp 4.3.77
5
CVSSv2
CVE-2017-3733
During a renegotiation handshake if the Encrypt-Then-Mac extension is negotiated where it was not in the original handshake (or vice-versa) then this can cause OpenSSL 1.1.0 prior to 1.1.0e to crash (dependent on ciphersuite). Both clients and servers are affected.
Openssl Openssl 1.1.0
Openssl Openssl 1.1.0c
Openssl Openssl 1.1.0d
Openssl Openssl 1.1.0a
Openssl Openssl 1.1.0b
Hp Operations Agent 11.15
Hp Operations Agent 11.14
1 Github repository
5
CVSSv2
CVE-2017-3730
In OpenSSL 1.1.0 prior to 1.1.0d, if a malicious server supplies bad parameters for a DHE or ECDHE key exchange then this can result in the client attempting to dereference a NULL pointer leading to a client crash. This could be exploited in a Denial of Service attack.
Openssl Openssl 1.1.0c
Openssl Openssl 1.1.0
Openssl Openssl 1.1.0b
Openssl Openssl 1.1.0a
Oracle Agile Engineering Data Management 6.2.0
Oracle Jd Edwards World Security A9.2
Oracle Communications Eagle Lnp Application Processor 10.1
Oracle Communications Application Session Controller 3.7.1
Oracle Jd Edwards World Security A9.4
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Communications Operations Monitor 3.4
Oracle Communications Operations Monitor 4.0
Oracle Agile Engineering Data Management 6.1.3
Oracle Jd Edwards World Security A9.1
Oracle Jd Edwards World Security A9.3
Oracle Communications Eagle Lnp Application Processor 10.0
Oracle Communications Eagle Lnp Application Processor 10.2
Oracle Communications Application Session Controller 3.8.0
1 EDB exploit
1 Github repository
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2