Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco talos vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-0385
The Smart Install feature in Cisco IOS 12.2, 15.0, 15.1, and 15.2 allows remote malicious users to cause a denial of service (device reload) by sending a malformed Smart Install message over TCP, aka Bug ID CSCtt16051.
Cisco Ios 15.1
Cisco Ios 12.2
Cisco Ios 15.0
Cisco Ios 15.2
7.5
CVSSv3
CVE-2016-1349
The Smart Install client implementation in Cisco IOS 12.2, 15.0, and 15.2 and IOS XE 3.2 up to and including 3.7 allows remote malicious users to cause a denial of service (device reload) via crafted image list parameters in a Smart Install packet, aka Bug ID CSCuv45410.
Cisco Ios Xe 3.3se 3.3.3se
Cisco Ios Xe 3.3se 3.3.2se
Cisco Ios Xe 3.4sg 3.4.3sg
Cisco Ios Xe 3.3xo 3.3.2xo
Cisco Ios Xe 3.7e 3.7.1e
Cisco Ios Xe 3.6e 3.6.2ae
Cisco Ios Xe 3.6e 3.6.1e
Cisco Ios Xe 3.6e 3.6.0e
Cisco Ios Xe 3.5e 3.5.3e
Cisco Ios Xe 3.3xo 3.3.1xo
Cisco Ios Xe 3.5e 3.5.0e
Cisco Ios Xe 3.2se 3.2.1se
Cisco Ios Xe 3.3xo 3.3.0xo
Cisco Ios 12.2\\\\\\(60\\\\\\)ez8
Cisco Ios 12.2\\\\\\(60\\\\\\)ez7
Cisco Ios 15.2\\\\\\(3\\\\\\)e1
Cisco Ios 12.2\\\\\\(60\\\\\\)ez5
Cisco Ios 12.2\\\\\\(60\\\\\\)ez4
Cisco Ios 15.0\\\\\\(2\\\\\\)ej1
Cisco Ios 15.2\\\\\\(1\\\\\\)e1
Cisco Ios 15.0\\\\\\(2\\\\\\)ex4
Cisco Ios 15.0\\\\\\(2\\\\\\)se5
6.5
CVSSv3
CVE-2015-7851
Directory traversal vulnerability in the save_config function in ntpd in ntp_control.c in NTP prior to 4.2.8p4, when used on systems that do not use '\' or '/' characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite ...
Ntp Ntp
Ntp Ntp 4.2.8
7.5
CVSSv3
CVE-2016-6385
Memory leak in the Smart Install client implementation in Cisco IOS 12.2 and 15.0 up to and including 15.2 and IOS XE 3.2 up to and including 3.8 allows remote malicious users to cause a denial of service (memory consumption) via crafted image-list parameters, aka Bug ID CSCuy823...
Cisco Ios 12.2\\(54\\)se
Cisco Ios 12.2\\(44\\)ey
Cisco Ios 15.0\\(1\\)se1
Cisco Ios 12.2\\(55\\)se
Cisco Ios Xe 3.3.4se
Cisco Ios 12.2\\(52\\)ex
Cisco Ios 12.2\\(53\\)se
Cisco Ios 15.0\\(2\\)eb
Cisco Ios Xe 3.6.0e
Cisco Ios 15.2\\(3\\)e2
Cisco Ios 12.2\\(53\\)ex
Cisco Ios Xe 3.5.0e
Cisco Ios 15.1\\(2\\)sg7
Cisco Ios 12.2\\(55\\)ez
Cisco Ios 15.2\\(1\\)e2
Cisco Ios 12.2\\(50\\)se5
Cisco Ios 12.2\\(46\\)ey
Cisco Ios 12.2\\(58\\)se
Cisco Ios Xe 3.5.2e
Cisco Ios 15.2\\(1\\)e3
Cisco Ios 15.0\\(2\\)ed
Cisco Ios 15.0\\(2a\\)se9
8.8
CVSSv3
CVE-2015-7849
Use-after-free vulnerability in ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote authenticated users to possibly execute arbitrary code or cause a denial of service (crash) via crafted packets.
Ntp Ntp
Ntp Ntp 4.2.8
Netapp Oncommand Balance -
Netapp Oncommand Performance Manager -
Netapp Oncommand Unified Manager -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
8.8
CVSSv3
CVE-2015-7854
Buffer overflow in the password management functionality in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted key file.
Ntp Ntp
Ntp Ntp 4.2.8
Netapp Oncommand Balance -
Netapp Oncommand Performance Manager -
Netapp Oncommand Unified Manager -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
7.5
CVSSv3
CVE-2015-7848
An integer overflow can occur in NTP-dev.4.3.70 leading to an out-of-bounds memory copy operation when processing a specially crafted private mode packet. The crafted packet needs to have the correct message authentication code and a valid timestamp. When processed by the NTP dae...
Ntp Ntp-dev 4.3.70
9.8
CVSSv3
CVE-2015-7853
The datalen parameter in the refclock driver in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to execute arbitrary code or cause a denial of service (crash) via a negative input value.
Ntp Ntp
Ntp Ntp 4.2.8
Netapp Oncommand Balance -
Netapp Oncommand Performance Manager -
Netapp Oncommand Unified Manager -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
NA
CVE-2013-1146
The Smart Install client functionality in Cisco IOS 12.2 and 15.0 up to and including 15.3 on Catalyst switches allows remote malicious users to cause a denial of service (device reload) via crafted image list parameters in Smart Install packets, aka Bug ID CSCub55790.
Cisco Ios 15.0\\(1\\)se
Cisco Ios 12.2
Cisco Ios 15.2
Cisco Ios 15.1
Cisco Ios 15.0
Cisco Ios 15.3
9.8
CVSSv3
CVE-2015-7705
The rate limiting feature in NTP 4.x prior to 4.2.8p4 and 4.3.x prior to 4.3.77 allows remote malicious users to have unspecified impact via a large number of crafted requests.
Ntp Ntp
Ntp Ntp 4.2.8
Netapp Oncommand Performance Manager -
Netapp Oncommand Unified Manager -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Citrix Xenserver 6.0.2
Citrix Xenserver 6.2.0
Citrix Xenserver 6.5
Citrix Xenserver 7.0
Siemens Tim 4r-ie Firmware
Siemens Tim 4r-ie Dnp3 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »