Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco ios xe vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2023-20066
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote malicious user to perform a directory traversal and access resources that are outside the filesystem mountpoint of the web UI. This vulnerability is due to an insufficient security configu...
Cisco Ios Xe 16.12.3
Cisco Ios Xe 17.3.2
Cisco Ios Xe 17.6.2
6.5
CVSSv3
CVE-2023-20067
A vulnerability in the HTTP-based client profiling feature of Cisco IOS XE Software for Wireless LAN Controllers (WLCs) could allow an unauthenticated, adjacent malicious user to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insuffi...
Cisco Ios Xe 16.10.1
Cisco Ios Xe 16.12.1
Cisco Ios Xe 16.11.1
Cisco Ios Xe 17.1.1
Cisco Ios Xe 16.11.1a
Cisco Ios Xe 16.12.1t
Cisco Ios Xe 16.11.2
Cisco Ios Xe 16.12.1s
Cisco Ios Xe 16.11.1c
Cisco Ios Xe 16.11.1b
Cisco Ios Xe 16.10.1s
Cisco Ios Xe 16.10.1e
Cisco Ios Xe 16.12.4
Cisco Ios Xe 16.12.8
Cisco Ios Xe 16.12.3
Cisco Ios Xe 17.2.1
Cisco Ios Xe 17.4.1
Cisco Ios Xe 17.1.1s
Cisco Ios Xe 16.12.2t
Cisco Ios Xe 16.12.2s
Cisco Ios Xe 17.1.1t
Cisco Ios Xe 17.2.1a
7.8
CVSSv3
CVE-2023-20029
A vulnerability in the Meraki onboarding feature of Cisco IOS XE Software could allow an authenticated, local malicious user to gain root level privileges on an affected device. This vulnerability is due to insufficient memory protection in the Meraki onboarding feature of an aff...
Cisco Ios Xe 17.7.1
Cisco Ios Xe 17.8.1
8.6
CVSSv3
CVE-2023-20072
A vulnerability in the fragmentation handling code of tunnel protocol packets in Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause an affected system to reload, resulting in a denial of service (DoS) condition. This vulnerability is due to the i...
Cisco Ios Xe 17.9.1
Cisco Ios Xe 17.9.1a
Cisco Ios Xe 17.9.1w
8.6
CVSSv3
CVE-2023-20027
A vulnerability in the implementation of the IPv4 Virtual Fragmentation Reassembly (VFR) feature of Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to imprope...
Cisco Ios Xe 3.9.0as
Cisco Ios Xe 3.9.1s
Cisco Ios Xe 3.9.2s
Cisco Ios Xe 3.10.0s
Cisco Ios Xe 3.10.1s
Cisco Ios Xe 3.10.2as
Cisco Ios Xe 3.10.2s
Cisco Ios Xe 3.10.2ts
Cisco Ios Xe 3.10.3s
Cisco Ios Xe 3.10.4s
Cisco Ios Xe 3.10.5s
Cisco Ios Xe 3.10.6s
Cisco Ios Xe 3.10.7s
Cisco Ios Xe 3.10.8as
Cisco Ios Xe 3.10.8s
Cisco Ios Xe 3.10.9s
Cisco Ios Xe 3.10.10s
Cisco Ios Xe 3.11.0s
Cisco Ios Xe 3.11.1s
Cisco Ios Xe 3.11.2s
Cisco Ios Xe 3.11.3s
Cisco Ios Xe 3.11.4s
7.8
CVSSv3
CVE-2023-20035
A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local malicious user to execute arbitrary commands with elevated privileges. This vulnerability is due to insufficient input validation by the system CLI. An attacker with privileges to run c...
Cisco Ios Xe Sd-wan -
7.5
CVSSv3
CVE-2023-20080
A vulnerability in the IPv6 DHCP version 6 (DHCPv6) relay and server features of Cisco IOS and IOS XE Software could allow an unauthenticated, remote malicious user to trigger a denial of service (DoS) condition. This vulnerability is due to insufficient validation of data bounda...
Cisco Ios 15.2(4)ea
Cisco Ios 15.4(2)s2
Cisco Ios Xe 3.13.2s
Cisco Ios 15.3(2)s1
Cisco Ios Xe 3.10.6s
Cisco Ios 15.1(2)sy10
Cisco Ios Xe 3.6.5be
Cisco Ios Xe 3.13.6s
Cisco Ios 15.5(1)t1
Cisco Ios 15.4(2)s4
Cisco Ios 15.2(2)e5b
Cisco Ios 15.3(2)s
Cisco Ios Xe 3.14.4s
Cisco Ios Xe 3.7.2ts
Cisco Ios 15.2(2)sy
Cisco Ios 15.6(2)sp2
Cisco Ios Xe 3.7.4e
Cisco Ios Xe 3.15.1cs
Cisco Ios 15.6(2)t3
Cisco Ios Xe 3.9.0e
Cisco Ios 15.6(1)t2
Cisco Ios 15.2(3)e2
5.9
CVSSv3
CVE-2023-20081
A vulnerability in the IPv6 DHCP (DHCPv6) client module of Cisco Adaptive Security Appliance (ASA) Software, Cisco Firepower Threat Defense (FTD) Software, Cisco IOS Software, and Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause a denial of ser...
Cisco Adaptive Security Appliance Software 9.16.1
Cisco Adaptive Security Appliance Software 9.8.2
Cisco Adaptive Security Appliance Software 9.9.1
Cisco Adaptive Security Appliance Software 9.9.1.2
Cisco Adaptive Security Appliance Software 9.9.2.50
Cisco Adaptive Security Appliance Software 9.10.1.30
Cisco Adaptive Security Appliance Software 9.8.3.18
Cisco Adaptive Security Appliance Software 9.8.3.26
Cisco Adaptive Security Appliance Software 9.9.2.80
Cisco Adaptive Security Appliance Software 9.12.2
Cisco Adaptive Security Appliance Software 9.8.2.24
Cisco Adaptive Security Appliance Software 9.8.3.16
Cisco Adaptive Security Appliance Software 9.8.4.29
Cisco Adaptive Security Appliance Software 9.9.1.4
Cisco Adaptive Security Appliance Software 9.9.2.36
Cisco Adaptive Security Appliance Software 9.9.2.47
Cisco Adaptive Security Appliance Software 9.10.1.2
Cisco Adaptive Security Appliance Software 9.12.2.5
Cisco Adaptive Security Appliance Software 9.12.4.4
Cisco Adaptive Security Appliance Software 9.13.1.13
Cisco Adaptive Security Appliance Software 9.8.2.20
Cisco Adaptive Security Appliance Software 9.8.4
6.8
CVSSv3
CVE-2023-20082
A vulnerability in Cisco IOS XE Software for Cisco Catalyst 9300 Series Switches could allow an authenticated, local attacker with level-15 privileges or an unauthenticated attacker with physical access to the device to execute persistent code at boot time and break the chain of ...
Cisco Ios Xe
Cisco Ios Xe 17.7
6.7
CVSSv3
CVE-2023-20097
A vulnerability in Cisco access points (AP) software could allow an authenticated, local malicious user to inject arbitrary commands and execute them with root privileges. This vulnerability is due to improper input validation of commands that are issued from a wireless controlle...
Cisco Wireless Lan Controller Software
Cisco Aironet Access Point Software
Cisco Ios Xe
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »