Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco ios xe sd-wan vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2023-20035
A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local malicious user to execute arbitrary commands with elevated privileges. This vulnerability is due to insufficient input validation by the system CLI. An attacker with privileges to run c...
Cisco Ios Xe Sd-wan -
6.5
CVSSv3
CVE-2020-3465
A vulnerability in Cisco IOS XE Software could allow an unauthenticated, adjacent malicious user to cause a device to reload. The vulnerability is due to incorrect handling of certain valid, but not typical, Ethernet frames. An attacker could exploit this vulnerability by sending...
Cisco Ios Xe 16.6.9
Cisco Ios Xe 17.4.1
6
CVSSv3
CVE-2021-34724
A vulnerability in the Cisco IOS XE SD-WAN Software CLI could allow an authenticated, local malicious user to elevate privileges and execute arbitrary code on the underlying operating system as the root user. An attacker must be authenticated on an affected device as a PRIV15 use...
Cisco Ios Xe Sd-wan
6.7
CVSSv3
CVE-2021-34723
A vulnerability in a specific CLI command that is run on Cisco IOS XE SD-WAN Software could allow an authenticated, local malicious user to overwrite arbitrary files in the configuration database of an affected device. This vulnerability is due to insufficient validation of speci...
Cisco Ios Xe 17.3.1a
NA
CVE-2021-1285
Multiple Cisco products are affected by a vulnerability in the Ethernet Frame Decoder of the Snort detection engine that could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to improper handling of error conditio...
5.3
CVSSv3
CVE-2020-3315
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote malicious user to bypass the configured file policies on an affected system. The vulnerability is due to errors in how the Snort detection engine hand...
Cisco Firepower Management Center 2.9.14.4
Cisco Firepower Management Center 2.9.15
Cisco Firepower Management Center 2.9.16
Cisco Firepower Threat Defense
Cisco Ios 15.2\\(7\\)e
Cisco Ios 16.11.2
Cisco Ios 17.3.1
1 Article
5.3
CVSSv3
CVE-2021-1495
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote malicious user to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of specific HTTP header parameters. An atta...
Cisco Firepower Threat Defense
Cisco Ios Xe
Snort Snort
NA
CVE-2021-1494
Multiple security vulnerabilities were discovered in snort, a flexible Network Intrusion Detection System, which could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or bypass filtering technology on an affected device and ex-filtrate data ...
7.5
CVSSv3
CVE-2021-1223
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote malicious user to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of an HTTP range header. An attacker could ...
Cisco Firepower Management Center 2.9.14.0
Cisco Firepower Management Center 2.9.15
Cisco Firepower Management Center 2.9.16
Cisco Firepower Threat Defense
Cisco Ios Xe
Snort Snort
5.3
CVSSv3
CVE-2021-1236
Multiple Cisco products are affected by a vulnerability in the Snort application detection engine that could allow an unauthenticated, remote malicious user to bypass the configured policies on an affected system. The vulnerability is due to a flaw in the detection algorithm. An ...
Cisco Ios Xe
Cisco Firepower Management Center 2.9.14.0
Cisco Firepower Management Center 2.9.15
Cisco Firepower Management Center 2.9.16
Cisco Firepower Management Center 2.9.17
Cisco Firepower Management Center 2.9.14.14
Cisco Firepower Threat Defense
Snort Snort
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »