Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco ios - vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2017-12236
A vulnerability in the implementation of the Locator/ID Separation Protocol (LISP) in Cisco IOS XE 3.2 up to and including 16.5 could allow an unauthenticated, remote attacker using an x tunnel router to bypass authentication checks performed when registering an Endpoint Identifi...
Cisco Ios Xe 16.5.1c
Cisco Ios Xe 3.2.0ja
Cisco Ios Xe 3.9.1e
9.8
CVSSv3
CVE-2017-12240
The DHCP relay subsystem of Cisco IOS 12.2 up to and including 15.6 and Cisco IOS XE Software contains a vulnerability that could allow an unauthenticated, remote malicious user to execute arbitrary code and gain full control of an affected system. The attacker could also cause a...
Cisco Ios 12.1(14)e7
Cisco Ios 12.3(3f)
Cisco Ios 12.4(11)xw6
Cisco Ios 12.2(28)sb12
Cisco Ios 12.1(5)xm1
Cisco Ios 15.2(4)ea
Cisco Ios 12.4(2)t2
Cisco Ios 12.2(2)xa2
Cisco Ios 15.3(3)jnb3
Cisco Ios 12.2(18)ixa
Cisco Ios 12.2(19c)
Cisco Ios 12.1(2)e1
Cisco Ios 12.1(19)ew
Cisco Ios 12.3(14)ym4
Cisco Ios 12.2(27)sv
Cisco Ios 12.2(28d)
Cisco Ios 12.2(7b)
Cisco Ios 12.1(5b)e7
Cisco Ios 12.2(53)sg9
Cisco Ios 12.2(18)sxd2
Cisco Ios 12.3(8)jea1
Cisco Ios 12.4(16)mr1
9.8
CVSSv3
CVE-2015-7853
The datalen parameter in the refclock driver in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to execute arbitrary code or cause a denial of service (crash) via a negative input value.
Ntp Ntp 4.2.8
Ntp Ntp
Netapp Oncommand Balance -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Netapp Oncommand Unified Manager -
Netapp Oncommand Performance Manager -
9.8
CVSSv3
CVE-2015-7871
Crypto-NAK packets in ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to bypass authentication.
Ntp Ntp 4.2.5
Ntp Ntp 4.2.8
Ntp Ntp
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Debian Debian Linux 9.0
Netapp Oncommand Balance -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Netapp Oncommand Unified Manager -
Netapp Oncommand Performance Manager -
9.8
CVSSv3
CVE-2015-7705
The rate limiting feature in NTP 4.x prior to 4.2.8p4 and 4.3.x prior to 4.3.77 allows remote malicious users to have unspecified impact via a large number of crafted requests.
Ntp Ntp 4.2.8
Ntp Ntp
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Netapp Oncommand Unified Manager -
Netapp Oncommand Performance Manager -
Citrix Xenserver 7.0
Citrix Xenserver 6.0.2
Citrix Xenserver 6.5
Citrix Xenserver 6.2.0
Siemens Tim 4r-ie Firmware
Siemens Tim 4r-ie Dnp3 Firmware
9.8
CVSSv3
CVE-2017-3881
A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause a reload of an affected device or remotely execute code with elevated privileges. The Cluster Manag...
Cisco Ios
Cisco Ios Xe
2 EDB exploits
6 Github repositories
2 Articles
9.8
CVSSv3
CVE-2016-6441
A vulnerability in the Transaction Language 1 (TL1) code of Cisco ASR 900 Series routers could allow an unauthenticated, remote malicious user to cause a reload of, or remotely execute code on, the affected system. This vulnerability affects Cisco ASR 900 Series Aggregation Servi...
Cisco Ios Xe 3.17.2s
Cisco Ios Xe 3.18.0s
Cisco Ios Xe 3.18s
Cisco Ios Xe 3.17.0s
Cisco Ios Xe 3.17.1s
Cisco Ios Xe 3.18.1s
Cisco Ios Xe 3.17s
9.8
CVSSv3
CVE-2003-0545
Double free vulnerability in OpenSSL 0.9.7 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via an SSL client certificate with a certain invalid ASN.1 encoding.
Openssl Openssl 0.9.6
Openssl Openssl 0.9.7
9.8
CVSSv3
CVE-2002-0059
The decompression algorithm in zlib 1.1.3 and previous versions, as used in many different utilities and packages, causes inflateEnd to release certain memory more than once (a "double free"), which may allow local and remote malicious users to execute arbitrary code vi...
Zlib Zlib
9.1
CVSSv3
CVE-2023-20186
A vulnerability in the Authentication, Authorization, and Accounting (AAA) feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote malicious user to bypass command authorization and copy files to or from the file system of an affected device u...
Cisco Ios 15.2(4)ea
Cisco Ios 15.4(2)s2
Cisco Ios 15.0(2)ex4
Cisco Ios 15.1(3)s4
Cisco Ios 15.3(2)s1
Cisco Ios 15.1(1)s
Cisco Ios 15.1(2)sy10
Cisco Ios 15.5(1)t1
Cisco Ios 15.4(2)s4
Cisco Ios 15.2(2)e5b
Cisco Ios 15.0(1)ey
Cisco Ios 15.0(1)xa
Cisco Ios 15.3(2)s
Cisco Ios 12.2(60)ez7
Cisco Ios 12.2(58)ex
Cisco Ios 15.2(2)sy
Cisco Ios 15.6(2)sp2
Cisco Ios 15.6(2)t3
Cisco Ios 15.1(3)mra1
Cisco Ios 15.6(1)t2
Cisco Ios 15.2(3)e2
Cisco Ios 15.1(2)sg4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »