Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco ios vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2017-12236
A vulnerability in the implementation of the Locator/ID Separation Protocol (LISP) in Cisco IOS XE 3.2 up to and including 16.5 could allow an unauthenticated, remote attacker using an x tunnel router to bypass authentication checks performed when registering an Endpoint Identifi...
Cisco Ios Xe 3.9.1e
Cisco Ios Xe 16.5.1c
Cisco Ios Xe 3.2.0ja
9.8
CVSSv3
CVE-2017-12240
The DHCP relay subsystem of Cisco IOS 12.2 up to and including 15.6 and Cisco IOS XE Software contains a vulnerability that could allow an unauthenticated, remote malicious user to execute arbitrary code and gain full control of an affected system. The attacker could also cause a...
Cisco Ios 12.1\\(5a\\)
Cisco Ios 15.5\\(3\\)m4
Cisco Ios 12.3\\(2\\)t1
Cisco Ios 12.2\\(20\\)se2
Cisco Ios 15.3\\(3\\)ja1m
Cisco Ios 12.3\\(9d\\)
Cisco Ios 12.3\\(1\\)
Cisco Ios 12.4\\(4\\)xc5
Cisco Ios 12.2\\(58\\)se1
Cisco Ios 12.3\\(7\\)t12
Cisco Ios 12.2\\(2\\)bx1
Cisco Ios 12.4\\(15\\)xl3
Cisco Ios 12.3\\(11\\)ja4
Cisco Ios 12.2\\(2\\)yc1
Cisco Ios 12.2\\(8\\)yw3
Cisco Ios 15.0\\(2\\)ey1
Cisco Ios 12.1\\(10\\)e3
Cisco Ios 12.1\\(10\\)e2
Cisco Ios 12.2\\(46\\)ey
Cisco Ios 12.2\\(2\\)xh1
Cisco Ios 12.4\\(7c\\)
Cisco Ios 12.4\\(3g\\)ja1
9.8
CVSSv3
CVE-2015-7853
The datalen parameter in the refclock driver in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to execute arbitrary code or cause a denial of service (crash) via a negative input value.
Ntp Ntp
Ntp Ntp 4.2.8
Netapp Oncommand Balance -
Netapp Oncommand Performance Manager -
Netapp Oncommand Unified Manager -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
9.8
CVSSv3
CVE-2015-7871
Crypto-NAK packets in ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to bypass authentication.
Ntp Ntp 4.2.5
Ntp Ntp
Ntp Ntp 4.2.8
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Netapp Oncommand Balance -
Netapp Oncommand Performance Manager -
Netapp Oncommand Unified Manager -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
9.8
CVSSv3
CVE-2015-7705
The rate limiting feature in NTP 4.x prior to 4.2.8p4 and 4.3.x prior to 4.3.77 allows remote malicious users to have unspecified impact via a large number of crafted requests.
Ntp Ntp
Ntp Ntp 4.2.8
Netapp Oncommand Performance Manager -
Netapp Oncommand Unified Manager -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Citrix Xenserver 6.0.2
Citrix Xenserver 6.2.0
Citrix Xenserver 6.5
Citrix Xenserver 7.0
Siemens Tim 4r-ie Firmware
Siemens Tim 4r-ie Dnp3 Firmware
9.8
CVSSv3
CVE-2017-3881
A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause a reload of an affected device or remotely execute code with elevated privileges. The Cluster Manag...
Cisco Ios
Cisco Ios Xe
2 EDB exploits
6 Github repositories
2 Articles
9.8
CVSSv3
CVE-2016-6441
A vulnerability in the Transaction Language 1 (TL1) code of Cisco ASR 900 Series routers could allow an unauthenticated, remote malicious user to cause a reload of, or remotely execute code on, the affected system. This vulnerability affects Cisco ASR 900 Series Aggregation Servi...
Cisco Ios Xe 3.18s
Cisco Ios Xe 3.17.2s
Cisco Ios Xe 3.17.1s
Cisco Ios Xe 3.18.0s
Cisco Ios Xe 3.18.1s
Cisco Ios Xe 3.17.0s
Cisco Ios Xe 3.17s
9.8
CVSSv3
CVE-2003-0545
Double free vulnerability in OpenSSL 0.9.7 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via an SSL client certificate with a certain invalid ASN.1 encoding.
Openssl Openssl 0.9.6
Openssl Openssl 0.9.7
9.8
CVSSv3
CVE-2002-0059
The decompression algorithm in zlib 1.1.3 and previous versions, as used in many different utilities and packages, causes inflateEnd to release certain memory more than once (a "double free"), which may allow local and remote malicious users to execute arbitrary code vi...
Zlib Zlib
9.1
CVSSv3
CVE-2023-20186
A vulnerability in the Authentication, Authorization, and Accounting (AAA) feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote malicious user to bypass command authorization and copy files to or from the file system of an affected device u...
Cisco Ios 15.2\\(4\\)ea
Cisco Ios 15.4\\(2\\)s2
Cisco Ios 15.0\\(2\\)ex4
Cisco Ios 15.1\\(3\\)s4
Cisco Ios 15.3\\(2\\)s1
Cisco Ios 15.1\\(1\\)s
Cisco Ios 15.1\\(2\\)sy10
Cisco Ios 15.5\\(1\\)t1
Cisco Ios 15.4\\(2\\)s4
Cisco Ios 15.2\\(2\\)e5b
Cisco Ios 15.0\\(1\\)ey
Cisco Ios 15.0\\(1\\)xa
Cisco Ios 15.3\\(2\\)s
Cisco Ios 12.2\\(60\\)ez7
Cisco Ios 12.2\\(58\\)ex
Cisco Ios 15.2\\(2\\)sy
Cisco Ios 15.6\\(2\\)sp2
Cisco Ios 15.6\\(2\\)t3
Cisco Ios 15.1\\(3\\)mra1
Cisco Ios 15.6\\(1\\)t2
Cisco Ios 15.2\\(3\\)e2
Cisco Ios 15.1\\(2\\)sg4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »