Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ios_xe vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-7990
Cisco IOS XE 3.5E and previous versions on WS-C3850, WS-C3860, and AIR-CT5760 devices does not properly parse the "request system shell" challenge response, which allows local users to obtain Linux root access by leveraging administrative privilege, aka Bug ID CSCur0981...
Cisco Ios Xe
Cisco Ws-c3860
Cisco Air-ct5760
Cisco Ws-c3850
7.8
CVSSv3
CVE-2020-3403
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local malicious user to inject a command to the underlying operating system that will execute with root privileges upon the next reboot of the device. The authenticated user must have privileged EXE...
Cisco Ios Xe 17.2.1
NA
CVE-2015-4243
The PPPoE establishment implementation in Cisco IOS XE 3.5.0S on ASR 1000 devices allows remote malicious users to cause a denial of service (device reload) by sending malformed PPPoE Active Discovery Request (PADR) packets on the local network, aka Bug ID CSCty94202.
Cisco Ios Xe 3.5.0s
6.5
CVSSv3
CVE-2020-3465
A vulnerability in Cisco IOS XE Software could allow an unauthenticated, adjacent malicious user to cause a device to reload. The vulnerability is due to incorrect handling of certain valid, but not typical, Ethernet frames. An attacker could exploit this vulnerability by sending...
Cisco Ios Xe 16.6.9
Cisco Ios Xe 17.4.1
8.6
CVSSv3
CVE-2020-3526
A vulnerability in the Common Open Policy Service (COPS) engine of Cisco IOS XE Software on Cisco cBR-8 Converged Broadband Routers could allow an unauthenticated, remote malicious user to crash a device. The vulnerability is due to insufficient input validation. An attacker coul...
Cisco Ios Xe 17.2
NA
CVE-2013-1165
Cisco IOS XE 2.x and 3.x prior to 3.4.5S, and 3.5 up to and including 3.7 prior to 3.7.1S, on 1000 series Aggregation Services Routers (ASR) allows remote malicious users to cause a denial of service (card reload) by sending many crafted L2TP packets, aka Bug ID CSCtz23293.
Cisco Ios Xe 2.2.1
Cisco Ios Xe 2.3.1t
Cisco Ios Xe 2.2.2
Cisco Ios Xe 2.4.0
Cisco Ios Xe 2.5.1
Cisco Ios Xe 2.4.2
Cisco Ios Xe 2.5.2
Cisco Ios Xe 2.6.2
Cisco Ios Xe 3.7.0s
Cisco Ios Xe 3.4.2s
Cisco Ios Xe 3.4.0as
Cisco Ios Xe 3.4.0s
Cisco Ios Xe 3.1.4s
Cisco Ios Xe 2.2.3
Cisco Ios Xe 2.3.0
Cisco Ios Xe 2.6.0
Cisco Ios Xe 2.4.3
Cisco Ios Xe 3.1.2s
Cisco Ios Xe 3.1.0s
Cisco Ios Xe 2.1.2
Cisco Ios Xe 2.3.2
Cisco Ios Xe 2.4.4
6.7
CVSSv3
CVE-2019-12649
A vulnerability in the Image Verification feature of Cisco IOS XE Software could allow an authenticated, local malicious user to install and boot a malicious software image or execute unsigned binaries on an affected device. The vulnerability exists because, under certain circums...
Cisco Ios Xe 16.8\\(1\\)
Cisco Ios 16.9.1
7.7
CVSSv3
CVE-2021-1623
A vulnerability in the Simple Network Management Protocol (SNMP) punt handling function of Cisco cBR-8 Converged Broadband Routers could allow an authenticated, remote malicious user to overload a device punt path, resulting in a denial of service (DoS) condition. This vulnerabil...
Cisco Ios Xe
NA
CVE-2014-3284
Cisco IOS XE on ASR1000 devices, when PPPoE termination is enabled, allows remote malicious users to cause a denial of service (device reload) via a malformed PPPoE packet, aka Bug ID CSCuo55180.
Cisco Ios Xe -
Cisco Asr 1002-x -
Cisco Asr 1001 -
Cisco Asr 1002 Fixed Router -
Cisco Asr 1002 -
Cisco Asr 1004 -
Cisco Asr 1006 -
Cisco Asr 1013 -
Cisco Asr 1023 Router -
7.8
CVSSv3
CVE-2019-12671
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local malicious user to gain shell access on an affected device and execute commands on the underlying operating system (OS). The vulnerability is due to insufficient enforcement of the consent toke...
Cisco Ios Xe 16.11.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »