Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco ios xe 17.7.2 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv3
CVE-2023-20198
Cisco is providing an update for the ongoing investigation into observed exploitation of the web UI feature in Cisco IOS XE Software. We are updating the list of fixed releases and adding the Software Checker. Our investigation has determined that the actors exploited two previou...
Cisco Ios Xe
3 Metasploit modules
35 Github repositories
1 Article
9.1
CVSSv3
CVE-2023-20186
A vulnerability in the Authentication, Authorization, and Accounting (AAA) feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote malicious user to bypass command authorization and copy files to or from the file system of an affected device u...
Cisco Ios 15.2(4)ea
Cisco Ios 15.4(2)s2
Cisco Ios 15.0(2)ex4
Cisco Ios 15.1(3)s4
Cisco Ios 15.3(2)s1
Cisco Ios 15.1(1)s
Cisco Ios 15.1(2)sy10
Cisco Ios 15.5(1)t1
Cisco Ios 15.4(2)s4
Cisco Ios 15.2(2)e5b
Cisco Ios 15.0(1)ey
Cisco Ios 15.0(1)xa
Cisco Ios 15.3(2)s
Cisco Ios 12.2(60)ez7
Cisco Ios 12.2(58)ex
Cisco Ios 15.2(2)sy
Cisco Ios 15.6(2)sp2
Cisco Ios 15.6(2)t3
Cisco Ios 15.1(3)mra1
Cisco Ios 15.6(1)t2
Cisco Ios 15.2(3)e2
Cisco Ios 15.1(2)sg4
8.8
CVSSv3
CVE-2023-20231
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote malicious user to perform an injection attack against an affected device. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sendin...
Cisco Ios Xe 16.12.4
Cisco Ios Xe 16.12.4a
Cisco Ios Xe 16.12.5
Cisco Ios Xe 16.12.5a
Cisco Ios Xe 16.12.5b
Cisco Ios Xe 16.12.6
Cisco Ios Xe 16.12.6a
Cisco Ios Xe 16.12.7
Cisco Ios Xe 16.12.8
Cisco Ios Xe 16.12.9
Cisco Ios Xe 17.2.2
Cisco Ios Xe 17.2.3
Cisco Ios Xe 17.3.1
Cisco Ios Xe 17.3.1a
Cisco Ios Xe 17.3.1w
Cisco Ios Xe 17.3.1x
Cisco Ios Xe 17.3.1z
Cisco Ios Xe 17.3.2
Cisco Ios Xe 17.3.3
Cisco Ios Xe 17.3.4
Cisco Ios Xe 17.3.4a
Cisco Ios Xe 17.3.4b
8.6
CVSSv3
CVE-2023-20027
A vulnerability in the implementation of the IPv4 Virtual Fragmentation Reassembly (VFR) feature of Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to imprope...
Cisco Ios Xe 3.9.0as
Cisco Ios Xe 3.9.1s
Cisco Ios Xe 3.9.2s
Cisco Ios Xe 3.10.0s
Cisco Ios Xe 3.10.1s
Cisco Ios Xe 3.10.2as
Cisco Ios Xe 3.10.2s
Cisco Ios Xe 3.10.2ts
Cisco Ios Xe 3.10.3s
Cisco Ios Xe 3.10.4s
Cisco Ios Xe 3.10.5s
Cisco Ios Xe 3.10.6s
Cisco Ios Xe 3.10.7s
Cisco Ios Xe 3.10.8as
Cisco Ios Xe 3.10.8s
Cisco Ios Xe 3.10.9s
Cisco Ios Xe 3.10.10s
Cisco Ios Xe 3.11.0s
Cisco Ios Xe 3.11.1s
Cisco Ios Xe 3.11.2s
Cisco Ios Xe 3.11.3s
Cisco Ios Xe 3.11.4s
7.5
CVSSv3
CVE-2023-20226
A vulnerability in Application Quality of Experience (AppQoE) and Unified Threat Defense (UTD) on Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. This...
Cisco Ios Xe 17.7.1
Cisco Ios Xe 17.7.1a
Cisco Ios Xe 17.7.2
Cisco Ios Xe 17.8.1
Cisco Ios Xe 17.8.1a
Cisco Ios Xe 17.9.1
Cisco Ios Xe 17.9.1a
Cisco Ios Xe 17.9.2
Cisco Ios Xe 17.9.2a
Cisco Ios Xe 17.10.1
Cisco Ios Xe 17.10.1a
7.5
CVSSv3
CVE-2023-20187
A vulnerability in the Multicast Leaf Recycle Elimination (mLRE) feature of Cisco IOS XE Software for Cisco ASR 1000 Series Aggregation Services Routers could allow an unauthenticated, remote malicious user to cause the affected device to reload, resulting in a denial of service ...
Cisco Ios Xe 3.7.1s
Cisco Ios Xe 3.7.2s
Cisco Ios Xe 3.7.2ts
Cisco Ios Xe 3.7.3s
Cisco Ios Xe 3.7.4s
Cisco Ios Xe 3.7.5s
Cisco Ios Xe 3.7.6s
Cisco Ios Xe 3.7.7s
Cisco Ios Xe 3.8.0s
Cisco Ios Xe 3.8.1s
Cisco Ios Xe 3.8.2s
Cisco Ios Xe 3.9.0s
Cisco Ios Xe 3.9.1s
Cisco Ios Xe 3.9.2s
Cisco Ios Xe 3.10.0s
Cisco Ios Xe 3.10.1s
Cisco Ios Xe 3.10.1xbs
Cisco Ios Xe 3.10.2s
Cisco Ios Xe 3.10.3s
Cisco Ios Xe 3.10.4s
Cisco Ios Xe 3.10.5s
Cisco Ios Xe 3.10.6s
7.4
CVSSv3
CVE-2024-20313
A vulnerability in the OSPF version 2 (OSPFv2) feature of Cisco IOS XE Software could allow an unauthenticated, adjacent malicious user to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. This vulnerability is due to improper vali...
Cisco Ios Xe 17.5.1
Cisco Ios Xe 17.5.1a
Cisco Ios Xe 17.6.1
Cisco Ios Xe 17.6.1a
Cisco Ios Xe 17.6.1w
Cisco Ios Xe 17.6.3
Cisco Ios Xe 17.9.1
Cisco Ios Xe 17.6.2
Cisco Ios Xe 17.6.3a
Cisco Ios Xe 17.7.1
Cisco Ios Xe 17.7.1a
Cisco Ios Xe 17.7.2
Cisco Ios Xe 17.8.1
Cisco Ios Xe 17.8.1a
Cisco Ios Xe 17.11.1
Cisco Ios Xe 17.10.1
Cisco Ios Xe 17.6.4
Cisco Ios Xe 17.9.1a
Cisco Ios Xe 17.9.1w
Cisco Ios Xe 17.6.1x
Cisco Ios Xe 17.6.1y
Cisco Ios Xe 17.6.1z
7.2
CVSSv3
CVE-2023-20273
A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote malicious user to inject commands with the privileges of root. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending c...
Cisco Ios Xe
2 Metasploit modules
4 Github repositories
1 Article
6.6
CVSSv3
CVE-2023-20109
A vulnerability in the Cisco Group Encrypted Transport VPN (GET VPN) feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker who has administrative control of either a group member or a key server to execute arbitrary code on an affec...
Cisco Ios 15.2(4)ea
Cisco Ios 15.4(2)s2
Cisco Ios 15.0(2)ex4
Cisco Ios 15.1(3)s4
Cisco Ios 15.3(2)s1
Cisco Ios 15.1(1)s
Cisco Ios 15.1(2)sy10
Cisco Ios 12.4(22)mda6
Cisco Ios 15.5(1)t1
Cisco Ios 15.4(2)s4
Cisco Ios 15.2(2)e5b
Cisco Ios 15.0(1)xa
Cisco Ios 15.3(2)s
Cisco Ios 15.2(2)sy
Cisco Ios 12.4(24)mda10
Cisco Ios 15.6(2)sp2
Cisco Ios 15.6(2)t3
Cisco Ios 15.1(3)mra1
Cisco Ios 15.6(1)t2
Cisco Ios 15.2(3)e2
Cisco Ios 12.4(22)xr12
Cisco Ios 12.4(24)mdb15
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-0044
client side
CVE-2021-47601
deserialization
CVE-2024-34994
encryption
CVE-2021-47609
CVE-2024-37079
CVE-2024-38608
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started