Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asr 5000 series software vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2023-20236
A vulnerability in the iPXE boot function of Cisco IOS XR software could allow an authenticated, local malicious user to install an unverified software image on an affected device. This vulnerability is due to insufficient image verification. An attacker could exploit this vulner...
Cisco Ios Xr
8.8
CVSSv3
CVE-2021-1539
Multiple vulnerabilities in the authorization process of Cisco ASR 5000 Series Software (StarOS) could allow an authenticated, remote malicious user to bypass authorization and execute a subset of CLI commands on an affected device. For more information about these vulnerabilitie...
Cisco Staros
Cisco Virtualized Packet Core -
7.2
CVSSv3
CVE-2021-1540
Multiple vulnerabilities in the authorization process of Cisco ASR 5000 Series Software (StarOS) could allow an authenticated, remote malicious user to bypass authorization and execute a subset of CLI commands on an affected device. For more information about these vulnerabilitie...
Cisco Staros
Cisco Virtualized Packet Core -
5.3
CVSSv3
CVE-2018-0273
A vulnerability in the IPsec Manager of Cisco StarOS for Cisco Aggregation Services Router (ASR) 5000 Series Routers and Virtualized Packet Core (VPC) System Software could allow an unauthenticated, remote malicious user to terminate all active IPsec VPN tunnels and prevent new t...
Cisco Staros 19.4.2.65120
Cisco Staros 19.6.0
Cisco Staros 21.2.0
Cisco Staros 21.2.6
Cisco Staros 21.4.0
NA
CVE-2021-1424
A vulnerability in the ipsecmgr process of Cisco ASR 5000 Series Software (StarOS) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. This vulnerability is due to insufficient validation of incoming Internet Key Exchange Version 2 (IKEv2...
4.6
CVSSv3
CVE-2023-20064
A vulnerability in the GRand Unified Bootloader (GRUB) for Cisco IOS XR Software could allow an unauthenticated attacker with physical access to the device to view sensitive files on the console using the GRUB bootloader command line. This vulnerability is due to the inclusion of...
Cisco Ios Xr
6.5
CVSSv3
CVE-2021-1145
A vulnerability in the Secure FTP (SFTP) of Cisco StarOS for Cisco ASR 5000 Series Routers could allow an authenticated, remote malicious user to read arbitrary files on an affected device. To exploit this vulnerability, the attacker would need to have valid credentials on the af...
Cisco Staros
6.7
CVSSv3
CVE-2020-3601
A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local malicious user to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker cou...
Cisco Staros
6.7
CVSSv3
CVE-2020-3602
A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local malicious user to elevate privileges on an affected device. The vulnerability is due to insufficient input validation of CLI commands. An attacker cou...
Cisco Staros
6.7
CVSSv3
CVE-2022-20665
A vulnerability in the CLI of Cisco StarOS could allow an authenticated, local malicious user to elevate privileges on an affected device. This vulnerability is due to insufficient input validation of CLI commands. An attacker could exploit this vulnerability by sending crafted c...
Cisco Staros
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »