Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco ios - vulnerabilities and exploits
(subscribe to this query)
4.7
CVSSv3
CVE-2021-27861
Layer 2 network filtering capabilities such as IPv6 RA guard can be bypassed using LLC/SNAP headers with invalid length (and optionally VLAN0 headers)
Ieee Ieee 802.2
Ietf P802.1q
4.7
CVSSv3
CVE-2021-27862
Layer 2 network filtering capabilities such as IPv6 RA guard can be bypassed using LLC/SNAP headers with invalid length and Ethernet to Wifi frame conversion (and optionally VLAN0 headers).
Ieee Ieee 802.2
Ietf P802.1q
4.7
CVSSv3
CVE-2021-27853
Layer 2 network filtering capabilities such as IPv6 RA guard or ARP inspection can be bypassed using combinations of VLAN 0 headers and LLC/SNAP headers.
Ieee Ieee 802.2
Ietf P802.1q
Cisco Catalyst 6503-e Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst 6504-e Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst 6506-e Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst 6509-e Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst 6509-neb-a Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst 6509-v-e Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst 6513-e Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst 6807-xl Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst 6840-x Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst 6880-x Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst C6816-x-le Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst C6824-x-le-40g Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst C6832-x-le Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst C6840-x-le-40g Firmware 15.5\\(01.01.85\\)sy07
Cisco Catalyst 6800ia Firmware 15.5\\(01.01.85\\)sy07
Cisco Ios Xe 17.4.1
Cisco Ios Xe 17.6.1
Cisco Ios Xe 17.3.3
Cisco Ios Xe 15.2\\(07\\)e03
Cisco Ios Xe 15.2\\(07\\)e02
NA
CVE-2022-20845
A vulnerability in the TL1 function of Cisco Network Convergence System (NCS) 4000 Series could allow an authenticated, local attacker to cause a memory leak in the TL1 process. This vulnerability is due to TL1 not freeing memory under some conditions. An attacker could exploit t...
NA
CVE-2022-20846
A vulnerability in the Cisco Discovery Protocol implementation for Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause the Cisco Discovery Protocol process to reload on an affected device. This vulnerability is due to a heap buffer overflow in certain...
NA
CVE-2022-20849
A vulnerability in the Broadband Network Gateway PPP over Ethernet (PPPoE) feature of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause the PPPoE process to continually crash. This vulnerability exists because the PPPoE feature does not properly han...
6.1
CVSSv3
CVE-2022-20713
A vulnerability in the VPN web client services component of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to conduct browser-based attacks against users of an affected devic...
Cisco Firepower Threat Defense 6.2.3
Cisco Firepower Threat Defense 6.2.3.1
Cisco Firepower Threat Defense 6.4.0
Cisco Firepower Threat Defense 6.2.3.13
Cisco Firepower Threat Defense 6.2.3.14
Cisco Firepower Threat Defense 6.2.3.15
Cisco Firepower Threat Defense 6.2.3.12
Cisco Firepower Threat Defense 6.6.0.1
Cisco Firepower Threat Defense 6.6.0
Cisco Adaptive Security Appliance Software 9.16.1
Cisco Firepower Threat Defense 7.1.0
Cisco Firepower Threat Defense 7.0.0
Cisco Firepower Threat Defense 6.7.0
Cisco Firepower Threat Defense 7.2.0.1
Cisco Firepower Threat Defense 7.0.1
Cisco Firepower Threat Defense 7.0.0.1
Cisco Firepower Threat Defense 7.0.1.1
Cisco Firepower Threat Defense 7.0.2
Cisco Firepower Threat Defense 7.0.2.1
Cisco Firepower Threat Defense 7.0.3
Cisco Firepower Threat Defense 7.0.4
Cisco Firepower Threat Defense 6.6.1
6.5
CVSSv3
CVE-2022-20821
A vulnerability in the health check RPM of Cisco IOS XR Software could allow an unauthenticated, remote malicious user to access the Redis instance that is running within the NOSi container. This vulnerability exists because the health check RPM opens TCP port 6379 by default upo...
Cisco Ios Xr -
4.6
CVSSv3
CVE-2022-20661
Multiple vulnerabilities that affect Cisco Catalyst Digital Building Series Switches and Cisco Catalyst Micro Switches could allow an malicious user to execute persistent code at boot time or to permanently prevent the device from booting, resulting in a permanent denial of servi...
Cisco Ios
Cisco Ios 15.2\\(8\\)e
6.7
CVSSv3
CVE-2022-20676
A vulnerability in the Tool Command Language (Tcl) interpreter of Cisco IOS XE Software could allow an authenticated, local malicious user to escalate from privilege level 15 to root-level privileges. This vulnerability is due to insufficient input validation of data that is pass...
Cisco Ios Xe 17.2.1
Cisco Ios Xe 17.4.1
Cisco Ios Xe 17.2.1a
Cisco Ios Xe 17.2.1v
Cisco Ios Xe 17.2.1r
Cisco Ios Xe 17.2.2
Cisco Ios Xe 17.3.1
Cisco Ios Xe 17.4.1a
Cisco Ios Xe 17.3.2
Cisco Ios Xe 17.4.1b
Cisco Ios Xe 17.3.1a
Cisco Ios Xe 17.3.2a
Cisco Ios Xe 17.3.1w
Cisco Ios Xe 17.2.3
Cisco Ios Xe 17.3.1x
Cisco Ios Xe 17.5.1
Cisco Ios Xe 16.12.1z2
Cisco Ios Xe 17.3.1z
Cisco Ios Xe 17.3.3
Cisco Ios Xe 17.3.3a
Cisco Ios Xe 17.4.1c
Cisco Ios Xe 17.5.1a
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »