Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco ios xr vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv2
CVE-2011-0943
Cisco IOS XR 3.8.3, 3.8.4, and 3.9.1 allows remote malicious users to cause a denial of service (NetIO process restart or device reload) via a crafted IPv4 packet, aka Bug ID CSCth44147.
Cisco Ios Xr 3.8.3
Cisco Ios Xr 3.8.4
Cisco Ios Xr 3.9.1
7.5
CVSSv2
CVE-2005-2105
Cisco IOS 12.2T up to and including 12.4 allows remote malicious users to bypass Authentication, Authorization, and Accounting (AAA) RADIUS authentication, if the fallback method is set to none, via a long username.
Cisco Ios 12.2\\(2\\)xr
Cisco Ios 12.2\\(4\\)xr
Cisco Ios 12.2xg
Cisco Ios 12.2xh
Cisco Ios 12.2xr
Cisco Ios 12.2xt
Cisco Ios 12.2yh
Cisco Ios 12.2yj
Cisco Ios 12.2yt
Cisco Ios 12.2yu
Cisco Ios 12.2ze
Cisco Ios 12.2zf
Cisco Ios 12.3b
Cisco Ios 12.3bc
Cisco Ios 12.3xd
Cisco Ios 12.3xe
Cisco Ios 12.3xl
Cisco Ios 12.3xm
Cisco Ios 12.3xx
Cisco Ios 12.3xy
Cisco Ios 12.3yi
Cisco Ios 12.3yj
5.7
CVSSv2
CVE-2014-3321
Cisco IOS XR 4.3.4 and previous versions on ASR 9000 devices, when bridge-group virtual interface (BVI) routing is enabled, allows remote malicious users to cause a denial of service (chip and card hangs) via a series of crafted MPLS packets, aka Bug ID CSCuo91149.
Cisco Ios Xr 4.3.1
Cisco Ios Xr
Cisco Ios Xr 4.3.2
Cisco Ios Xr 4.3.0
Cisco Asr 9010 -
Cisco Asr 9904 -
Cisco Asr 9912 -
Cisco Asr 9922 -
Cisco Asr 9000 Rsp440 Router -
Cisco Asr 9006 -
Cisco Asr 9001 -
7.8
CVSSv2
CVE-2011-0949
Cisco IOS XR 3.6.x, 3.8.x prior to 3.8.3, and 3.9.x prior to 3.9.1 does not properly remove sshd_lock files from /tmp/, which allows remote malicious users to cause a denial of service (disk consumption) by making many SSHv1 connections, aka Bug ID CSCtd64417.
Cisco Ios Xr 3.6.0
Cisco Ios Xr 3.6.1
Cisco Ios Xr 3.6.2
Cisco Ios Xr 3.6.3
Cisco Ios Xr 3.8.0
Cisco Ios Xr 3.8.2
Cisco Ios Xr 3.8.1
Cisco Ios Xr 3.9.0
7.2
CVSSv2
CVE-2021-34728
Multiple vulnerabilities in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker with a low-privileged account to elevate privileges on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Cisco Ios Xr
7.2
CVSSv2
CVE-2021-34719
Multiple vulnerabilities in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker with a low-privileged account to elevate privileges on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Cisco Ios Xr
7.8
CVSSv2
CVE-2011-1651
Cisco IOS XR 3.9.x and 4.0.x prior to 4.0.3 and 4.1.x prior to 4.1.1, when an SPA interface processor is installed, allows remote malicious users to cause a denial of service (device reload) via a crafted IPv4 packet, aka Bug ID CSCto45095.
Cisco Ios Xr 3.0
Cisco Ios Xr 3.9.1
Cisco Ios Xr 4.0.0
Cisco Ios Xr 4.0.1
Cisco Ios Xr 4.0.2
Cisco Ios Xr 4.1
Cisco Ios Xr 3.9.0
Cisco Ios Xr 3.9.2
8.3
CVSSv2
CVE-2020-3217
A vulnerability in the Topology Discovery Service of Cisco One Platform Kit (onePK) in Cisco IOS Software, Cisco IOS XE Software, Cisco IOS XR Software, and Cisco NX-OS Software could allow an unauthenticated, adjacent malicious user to execute arbitrary code or cause a denial of...
Cisco Ios 12.2\\(6\\)i1
Cisco Ios 12.4\\(25e\\)jao7
Cisco Ios 15.0\\(2\\)sg11a
Cisco Ios 15.1\\(3\\)svr1
Cisco Ios 15.2\\(1\\)sy
Cisco Ios 15.2\\(1\\)sy0a
Cisco Ios 15.2\\(1\\)sy1
Cisco Ios 15.2\\(1\\)sy1a
Cisco Ios 15.2\\(1\\)sy2
Cisco Ios 15.2\\(1\\)sy3
Cisco Ios 15.2\\(1\\)sy4
Cisco Ios 15.2\\(1\\)sy5
Cisco Ios 15.2\\(1\\)sy6
Cisco Ios 15.2\\(1\\)sy7
Cisco Ios 15.2\\(1\\)sy8
Cisco Ios 15.2\\(2\\)sy
Cisco Ios 15.2\\(2\\)sy1
Cisco Ios 15.2\\(2\\)sy2
Cisco Ios 15.2\\(2\\)sy3
Cisco Ios 15.2\\(3\\)e
Cisco Ios 15.2\\(3\\)e1
Cisco Ios 15.2\\(3\\)e2
2.1
CVSSv2
CVE-2021-34771
A vulnerability in the Cisco IOS XR Software CLI could allow an authenticated, local malicious user to view more information than their privileges allow. This vulnerability is due to insufficient application of restrictions during the execution of a specific command. An attacker ...
Cisco Ios Xr
5
CVSSv2
CVE-2017-12355
A vulnerability in the Local Packet Transport Services (LPTS) ingress frame-processing functionality of Cisco IOS XR Software could allow an unauthenticated, remote malicious user to cause one of the LPTS processes on an affected system to restart unexpectedly, resulting in a bri...
Cisco Ios Xr 6.4.1 Base
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »