Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asr 5000 series software vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2023-20236
A vulnerability in the iPXE boot function of Cisco IOS XR software could allow an authenticated, local malicious user to install an unverified software image on an affected device. This vulnerability is due to insufficient image verification. An attacker could exploit this vulner...
Cisco Ios Xr
7.5
CVSSv3
CVE-2021-34737
A vulnerability in the DHCP version 4 (DHCPv4) server feature of Cisco IOS XR Software could allow an unauthenticated, remote malicious user to trigger a crash of the dhcpd process, resulting in a denial of service (DoS) condition. This vulnerability exists because certain DHCPv4...
Cisco Ios Xr
7.5
CVSSv3
CVE-2017-6672
A vulnerability in certain filtering mechanisms of access control lists (ACLs) for Cisco ASR 5000 Series Aggregation Services Routers up to and including 21.x could allow an unauthenticated, remote malicious user to bypass ACL rules that have been configured for an affected devic...
Cisco Asr 5000 Series Software 19.3.12
Cisco Asr 5000 Series Software 19.6.3
Cisco Asr 5000 Series Software 20.1.v5
Cisco Asr 5000 Series Software 20.2.12
Cisco Asr 5000 Series Software 21.1.m0.65931
Cisco Asr 5000 Series Software 21.1.m0.65986
Cisco Asr 5000 Series Software 21.2.a0.65995
Cisco Asr 5000 Series Software 21.1.m0.65921
Cisco Asr 5000 Series Software 19.3.11
Cisco Asr 5000 Series Software 19.3.5
Cisco Asr 5000 Series Software 19.6.0
Cisco Asr 5000 Series Software 20.3.0
Cisco Asr 5000 Series Software 21.0.v2
Cisco Asr 5000 Series Software 21.1.v0
Cisco Asr 5000 Series Software 21.1.0
Cisco Asr 5000 Series Software 20.3.1
Cisco Asr 5000 Series Software 21.2.a0.65914
Cisco Asr 5000 Series Software 20.2.4
Cisco Asr 5000 Series Software 21.1.2
Cisco Asr 5000 Series Software 21.3.0
Cisco Asr 5000 Series Software 21.0.v1.66638
Cisco Asr 5000 Series Software 19.6.6
7.5
CVSSv3
CVE-2017-6729
A vulnerability in the Border Gateway Protocol (BGP) processing functionality of the Cisco StarOS operating system for Cisco ASR 5000 Series Routers and Cisco Virtualized Packet Core (VPC) Software could allow an unauthenticated, remote malicious user to cause the BGP process on ...
Cisco Asr 5000 Software 16.5.0
Cisco Asr 5000 Software 17.2.0
Cisco Asr 5000 Software 17.3.0
Cisco Asr 5000 Software 17.3.1
Cisco Asr 5000 Software 17.3.9.62033
Cisco Asr 5000 Software 17.3 Base
Cisco Asr 5000 Software 18.4.0
Cisco Asr 5000 Software 19.0.1
Cisco Asr 5000 Software 19.0.m0.60737
Cisco Asr 5000 Software 19.0.m0.60828
Cisco Asr 5000 Software 20.0.2.3.65026
Cisco Asr 5000 Software 20.0.2.v1
Cisco Asr 5000 Software 20.0.m0.62842
Cisco Asr 5000 Software 20.0.m0.63229
Cisco Asr 5000 Software 20.0.v0
Cisco Asr 5000 Software 16.4.1
Cisco Asr 5000 Software 18.0.0.59167
Cisco Asr 5000 Software 18.0.0.59211
Cisco Asr 5000 Software 18.0.l0.59219
Cisco Asr 5000 Software 18.1.0
Cisco Asr 5000 Software 18.1.0.59776
Cisco Asr 5000 Software 19.3.0
7.5
CVSSv3
CVE-2017-3730
In OpenSSL 1.1.0 prior to 1.1.0d, if a malicious server supplies bad parameters for a DHE or ECDHE key exchange then this can result in the client attempting to dereference a NULL pointer leading to a client crash. This could be exploited in a Denial of Service attack.
Openssl Openssl 1.1.0c
Openssl Openssl 1.1.0
Openssl Openssl 1.1.0b
Openssl Openssl 1.1.0a
Oracle Agile Engineering Data Management 6.2.0
Oracle Jd Edwards World Security A9.2
Oracle Communications Eagle Lnp Application Processor 10.1
Oracle Communications Application Session Controller 3.7.1
Oracle Jd Edwards World Security A9.4
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Communications Operations Monitor 3.4
Oracle Communications Operations Monitor 4.0
Oracle Agile Engineering Data Management 6.1.3
Oracle Jd Edwards World Security A9.1
Oracle Jd Edwards World Security A9.3
Oracle Communications Eagle Lnp Application Processor 10.0
Oracle Communications Eagle Lnp Application Processor 10.2
Oracle Communications Application Session Controller 3.8.0
1 EDB exploit
1 Github repository
1 Article
7.5
CVSSv3
CVE-2017-3733
During a renegotiation handshake if the Encrypt-Then-Mac extension is negotiated where it was not in the original handshake (or vice-versa) then this can cause OpenSSL 1.1.0 prior to 1.1.0e to crash (dependent on ciphersuite). Both clients and servers are affected.
Openssl Openssl 1.1.0
Openssl Openssl 1.1.0c
Openssl Openssl 1.1.0d
Openssl Openssl 1.1.0a
Openssl Openssl 1.1.0b
Hp Operations Agent 11.15
Hp Operations Agent 11.14
1 Github repository
7.5
CVSSv3
CVE-2016-9203
A vulnerability in the Internet Key Exchange Version 2 (IKEv2) feature of Cisco ASR 5000 Series Software could allow an unauthenticated, remote malicious user to cause a reload of the ipsecmgr process. More Information: CSCvb38398. Known Affected Releases: 20.2.3 20.2.3.65026. Kn...
Cisco Asr 5000 Series Software 20.0.2.3.65026
7.5
CVSSv3
CVE-2016-6466
A vulnerability in the IPsec component of StarOS for Cisco ASR 5000 Series routers could allow an unauthenticated, remote malicious user to terminate all active IPsec VPN tunnels and prevent new tunnels from establishing, resulting in a denial of service (DoS) condition. This vul...
Cisco Asr 5000 Series Software 20.0.2.v1
Cisco Asr 5000 Series Software 20.0.2.3
Cisco Virtualized Packet Core 20.0 Base
Cisco Asr 5000 Series Software 20.0.0
7.5
CVSSv3
CVE-2016-2180
The TS_OBJ_print_bio function in crypto/ts/ts_lib.c in the X.509 Public Key Infrastructure Time-Stamp Protocol (TSP) implementation in OpenSSL up to and including 1.0.2h allows remote malicious users to cause a denial of service (out-of-bounds read and application crash) via a cr...
Openssl Openssl 1.0.1m
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.2e
Openssl Openssl 1.0.1r
Openssl Openssl 1.0.2b
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.2g
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.2h
Openssl Openssl 1.0.1d
Openssl Openssl 1.0.1t
Openssl Openssl 1.0.2c
Openssl Openssl 1.0.1p
Openssl Openssl 1.0.1k
Openssl Openssl 1.0.1b
Openssl Openssl 1.0.1n
Openssl Openssl 1.0.1q
Openssl Openssl 1.0.1e
Openssl Openssl 1.0.1l
7.5
CVSSv3
CVE-2016-1409
The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Cisco IOS XE 2.1 up to and including 3.17S, IOS XR 2.0.0 up to and including 5.3.2, and NX-OS allows remote malicious users to cause a denial of service (packet-processing outage) via crafted ND messages, ak...
Cisco Ios 15.3\\(3\\)jnp1
Cisco Ios 15.3\\(3\\)jnp
Cisco Ios 15.3\\(3\\)jc101
Cisco Ios 15.3\\(3\\)jc1
Cisco Ios 15.3\\(3\\)jbb4
Cisco Ios 15.3\\(3\\)jbb2
Cisco Ios 15.3\\(3\\)jnb4
Cisco Ios 15.3\\(3\\)jnb3
Cisco Ios 15.6\\(2\\)t
Cisco Ios 15.6\\(1\\)t
Cisco Ios 15.6\\(1\\)s
Cisco Ios 15.0\\(2\\)sqd2
Cisco Ios 15.3\\(3\\)jb1
Cisco Ios 15.3\\(3\\)jab
Cisco Ios 15.3\\(3\\)jab1
Cisco Ios 15.3\\(3\\)ja78
Cisco Ios 15.3\\(3\\)ja77
Cisco Ios 15.3\\(3\\)ja
Cisco Ios 15.3\\(3\\)ja50
Cisco Ios 12.4\\(25e\\)jap4
Cisco Ios 12.4\\(25e\\)jap26
Cisco Ios 12.4\\(25e\\)jap2
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »