Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ios xr vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2021-1485
A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local malicious user to inject arbitrary commands that are executed with root privileges on the underlying Linux operating system (OS) of an affected device. This vulnerability is due to insufficien...
Cisco Ios Xr
7.5
CVSSv2
CVE-2014-3396
Cisco IOS XR on ASR 9000 devices does not properly use compression for port-range and address-range encoding, which allows remote malicious users to bypass intended Typhoon line-card ACL restrictions via transit traffic, aka Bug ID CSCup30133.
Cisco Ios Xr
Cisco Asr 9912 -
Cisco Asr 9000 Rsp440 Router -
Cisco Asr 9001 -
Cisco Asr 9006 -
Cisco Asr 9010 -
Cisco Asr 9904 -
Cisco Asr 9922 -
7.8
CVSSv2
CVE-2011-1651
Cisco IOS XR 3.9.x and 4.0.x prior to 4.0.3 and 4.1.x prior to 4.1.1, when an SPA interface processor is installed, allows remote malicious users to cause a denial of service (device reload) via a crafted IPv4 packet, aka Bug ID CSCto45095.
Cisco Ios Xr 3.0
Cisco Ios Xr 3.9.1
Cisco Ios Xr 4.0.0
Cisco Ios Xr 4.0.1
Cisco Ios Xr 4.0.2
Cisco Ios Xr 4.1
Cisco Ios Xr 3.9.0
Cisco Ios Xr 3.9.2
7.2
CVSSv2
CVE-2021-34728
Multiple vulnerabilities in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker with a low-privileged account to elevate privileges on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Cisco Ios Xr
7.2
CVSSv2
CVE-2021-34719
Multiple vulnerabilities in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker with a low-privileged account to elevate privileges on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Cisco Ios Xr
5
CVSSv2
CVE-2017-12355
A vulnerability in the Local Packet Transport Services (LPTS) ingress frame-processing functionality of Cisco IOS XR Software could allow an unauthenticated, remote malicious user to cause one of the LPTS processes on an affected system to restart unexpectedly, resulting in a bri...
Cisco Ios Xr 6.4.1 Base
5
CVSSv2
CVE-2021-1243
A vulnerability in the Local Packet Transport Services (LPTS) programming of the SNMP with the management plane protection feature of Cisco IOS XR Software could allow an unauthenticated, remote malicious user to allow connections despite the management plane protection that is c...
Cisco Ios Xr
Cisco Ios Xr 7.0.11
Cisco Ios Xr 6.7.1
Cisco Ios Xr 7.2.0
Cisco Ios Xr 7.1.0
6.1
CVSSv2
CVE-2014-3322
Cisco IOS XR 4.3(.2) and previous versions on ASR 9000 devices does not properly perform NetFlow sampling of IP packets, which allows remote malicious users to cause a denial of service (chip and card hangs) via malformed (1) IPv4 or (2) IPv6 packets, aka Bug ID CSCuo68417.
Cisco Ios Xr 4.3.1
Cisco Ios Xr 4.3.0
Cisco Ios Xr
Cisco Asr 9912 -
Cisco Asr 9922 -
Cisco Asr 9006 -
Cisco Asr 9904 -
Cisco Asr 9000 Rsp440 Router -
Cisco Asr 9001 -
Cisco Asr 9010 -
4.6
CVSSv2
CVE-2014-3335
Cisco IOS XR 4.3(.2) and previous versions on ASR 9000 devices does not properly perform NetFlow sampling of packets with multicast destination MAC addresses, which allows remote malicious users to cause a denial of service (chip and card hangs) via a crafted packet, aka Bug ID C...
Cisco Ios Xr 4.3.0
Cisco Ios Xr
Cisco Ios Xr 4.3.1
Cisco Asr 9000 Rsp440 Router -
Cisco Asr 9001 -
Cisco Asr 9922 -
Cisco Asr 9904 -
Cisco Asr 9912 -
Cisco Asr 9006 -
Cisco Asr 9010 -
5.7
CVSSv2
CVE-2014-3321
Cisco IOS XR 4.3.4 and previous versions on ASR 9000 devices, when bridge-group virtual interface (BVI) routing is enabled, allows remote malicious users to cause a denial of service (chip and card hangs) via a series of crafted MPLS packets, aka Bug ID CSCuo91149.
Cisco Ios Xr 4.3.1
Cisco Ios Xr
Cisco Ios Xr 4.3.2
Cisco Ios Xr 4.3.0
Cisco Asr 9010 -
Cisco Asr 9904 -
Cisco Asr 9912 -
Cisco Asr 9922 -
Cisco Asr 9000 Rsp440 Router -
Cisco Asr 9006 -
Cisco Asr 9001 -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »