Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco ios xr 4.3.1 vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2017-3733
During a renegotiation handshake if the Encrypt-Then-Mac extension is negotiated where it was not in the original handshake (or vice-versa) then this can cause OpenSSL 1.1.0 prior to 1.1.0e to crash (dependent on ciphersuite). Both clients and servers are affected.
Openssl Openssl 1.1.0
Openssl Openssl 1.1.0c
Openssl Openssl 1.1.0d
Openssl Openssl 1.1.0a
Openssl Openssl 1.1.0b
Hp Operations Agent 11.15
Hp Operations Agent 11.14
1 Github repository
505
VMScore
CVE-2017-3730
In OpenSSL 1.1.0 prior to 1.1.0d, if a malicious server supplies bad parameters for a DHE or ECDHE key exchange then this can result in the client attempting to dereference a NULL pointer leading to a client crash. This could be exploited in a Denial of Service attack.
Openssl Openssl 1.1.0c
Openssl Openssl 1.1.0
Openssl Openssl 1.1.0b
Openssl Openssl 1.1.0a
Oracle Agile Engineering Data Management 6.2.0
Oracle Jd Edwards World Security A9.2
Oracle Communications Eagle Lnp Application Processor 10.1
Oracle Communications Application Session Controller 3.7.1
Oracle Jd Edwards World Security A9.4
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Communications Operations Monitor 3.4
Oracle Communications Operations Monitor 4.0
Oracle Agile Engineering Data Management 6.1.3
Oracle Jd Edwards World Security A9.1
Oracle Jd Edwards World Security A9.3
Oracle Communications Eagle Lnp Application Processor 10.0
Oracle Communications Eagle Lnp Application Processor 10.2
Oracle Communications Application Session Controller 3.8.0
1 EDB exploit
1 Github repository
1 Article
187
VMScore
CVE-2015-7975
The nextvar function in NTP prior to 4.2.8p6 and 4.3.x prior to 4.3.90 does not properly validate the length of its input, which allows an malicious user to cause a denial of service (application crash).
Ntp Ntp 4.3.0
Ntp Ntp 4.3.1
Ntp Ntp 4.3.16
Ntp Ntp 4.3.17
Ntp Ntp 4.3.18
Ntp Ntp 4.3.24
Ntp Ntp 4.3.25
Ntp Ntp 4.3.31
Ntp Ntp 4.3.32
Ntp Ntp 4.3.39
Ntp Ntp 4.3.4
Ntp Ntp 4.3.40
Ntp Ntp 4.3.47
Ntp Ntp 4.3.48
Ntp Ntp 4.3.54
Ntp Ntp 4.3.55
Ntp Ntp 4.3.62
Ntp Ntp 4.3.63
Ntp Ntp 4.3.7
Ntp Ntp 4.3.70
Ntp Ntp 4.3.77
Ntp Ntp 4.3.78
356
VMScore
CVE-2015-7976
The ntpq saveconfig command in NTP 4.1.2, 4.2.x prior to 4.2.8p6, 4.3, 4.3.25, 4.3.70, and 4.3.77 does not properly filter special characters, which allows malicious users to cause unspecified impact via a crafted filename.
Ntp Ntp 4.1.2
Ntp Ntp
Ntp Ntp 4.3.0
Ntp Ntp 4.3.1
Ntp Ntp 4.3.16
Ntp Ntp 4.3.17
Ntp Ntp 4.3.24
Ntp Ntp 4.3.25
Ntp Ntp 4.3.31
Ntp Ntp 4.3.32
Ntp Ntp 4.3.39
Ntp Ntp 4.3.4
Ntp Ntp 4.3.47
Ntp Ntp 4.3.48
Ntp Ntp 4.3.54
Ntp Ntp 4.3.55
Ntp Ntp 4.3.61
Ntp Ntp 4.3.62
Ntp Ntp 4.3.63
Ntp Ntp 4.3.7
Ntp Ntp 4.3.70
Ntp Ntp 4.3.77
445
VMScore
CVE-2016-1409
The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Cisco IOS XE 2.1 up to and including 3.17S, IOS XR 2.0.0 up to and including 5.3.2, and NX-OS allows remote malicious users to cause a denial of service (packet-processing outage) via crafted ND messages, ak...
Cisco Ios 15.3\\(3\\)jnp1
Cisco Ios 15.3\\(3\\)jnp
Cisco Ios 15.3\\(3\\)jc101
Cisco Ios 15.3\\(3\\)jc1
Cisco Ios 15.3\\(3\\)jbb4
Cisco Ios 15.3\\(3\\)jbb2
Cisco Ios 15.3\\(3\\)jnb4
Cisco Ios 15.3\\(3\\)jnb3
Cisco Ios 15.6\\(2\\)t
Cisco Ios 15.6\\(1\\)t
Cisco Ios 15.6\\(1\\)s
Cisco Ios 15.0\\(2\\)sqd2
Cisco Ios 15.3\\(3\\)jb1
Cisco Ios 15.3\\(3\\)jab
Cisco Ios 15.3\\(3\\)jab1
Cisco Ios 15.3\\(3\\)ja78
Cisco Ios 15.3\\(3\\)ja77
Cisco Ios 15.3\\(3\\)ja
Cisco Ios 15.3\\(3\\)ja50
Cisco Ios 12.4\\(25e\\)jap4
Cisco Ios 12.4\\(25e\\)jap26
Cisco Ios 12.4\\(25e\\)jap2
1 Article
445
VMScore
CVE-2016-1407
Cisco IOS XR up to and including 5.3.2 mishandles Local Packet Transport Services (LPTS) flow-base entries, which allows remote malicious users to cause a denial of service (session drop) by making many connection attempts to open TCP ports, aka Bug ID CSCux95576.
Cisco Ios Xr 5.2.5
Cisco Ios Xr 5.2.3
Cisco Ios Xr 5.1.1.k9sec
Cisco Ios Xr 5.3.0
Cisco Ios Xr 4.3.3
Cisco Ios Xr 5.1.0
Cisco Ios Xr 4.2.2
Cisco Ios Xr 4.2.1
Cisco Ios Xr 4.0.11
Cisco Ios Xr 4.0.0
Cisco Ios Xr 4.1 Base
Cisco Ios Xr 3.8.2
Cisco Ios Xr 3.9.1
Cisco Ios Xr 3.5.3
Cisco Ios Xr 3.5.2
Cisco Ios Xr 3.4.2
Cisco Ios Xr 3.2.6
Cisco Ios Xr 3.4.0
Cisco Ios Xr 3.3.0
Cisco Ios Xr 2.0.0
Cisco Ios Xr 3.0.0
Cisco Ios Xr 5.0 Base
409
VMScore
CVE-2016-1361
Cisco IOS XR up to and including 4.3.2 on Gigabit Switch Router (GSR) 12000 devices does not properly check for a Bidirectional Forwarding Detection (BFD) header in a UDP packet, which allows remote malicious users to cause a denial of service (line-card restart) via a crafted pa...
Cisco Ios Xr 4.0.3
Cisco Ios Xr 3.8.2
Cisco Ios Xr 4.2.0
Cisco Ios Xr 3.9.2
Cisco Ios Xr 4.2.1
Cisco Ios Xr 3.8.4
Cisco Ios Xr 3.4.3
Cisco Ios Xr 4.0.1
Cisco Ios Xr 3.5.4
Cisco Ios Xr 3.5.3
Cisco Ios Xr 3.6.0
Cisco Ios Xr 3.6.3
Cisco Ios Xr 3.9.1
Cisco Ios Xr 3.4.2
Cisco Ios Xr 3.4.1
Cisco Ios Xr 3.6.2
Cisco Ios Xr 3.6.1
Cisco Ios Xr 4.2.3
Cisco Ios Xr 4.2.2
Cisco Ios Xr 4.3.0
Cisco Ios Xr 3.5.2
Cisco Ios Xr 3.8.1
694
VMScore
CVE-2015-0695
Cisco IOS XR 4.3.4 up to and including 5.3.0 on ASR 9000 devices, when uRPF, PBR, QoS, or an ACL is configured, does not properly handle bridge-group virtual interface (BVI) traffic, which allows remote malicious users to cause a denial of service (chip and card hangs and reloads...
Cisco Ios Xr 5.2.0
Cisco Ios Xr 5.2.1
Cisco Ios Xr 4.3.0
Cisco Ios Xr 4.3.1
Cisco Ios Xr 4.3.2
Cisco Ios Xr 5.1.1
Cisco Ios Xr 5.1.2
Cisco Ios Xr 5.1.0
Cisco Ios Xr 4.3.3
1 Article
445
VMScore
CVE-2014-3376
Cisco IOS XR 5.1 and previous versions allows remote malicious users to cause a denial of service (process reload) via a malformed RSVP packet, aka Bug ID CSCuq12031.
Cisco Ios Xr 4.1.2
Cisco Ios Xr 4.1.1
Cisco Ios Xr 3.9.2
Cisco Ios Xr 3.9.1
Cisco Ios Xr 3.7.3
Cisco Ios Xr 3.7.2
Cisco Ios Xr 3.5.3
Cisco Ios Xr 3.5.2
Cisco Ios Xr 3.3.5
Cisco Ios Xr 3.3.4
Cisco Ios Xr 3.2.2
Cisco Ios Xr 5.1.0
Cisco Ios Xr 4.1
Cisco Ios Xr 4.0.4
Cisco Ios Xr 3.9.0
Cisco Ios Xr 3.8.4
Cisco Ios Xr 3.7.1
Cisco Ios Xr 3.7
Cisco Ios Xr 3.5.1
Cisco Ios Xr 3.5
Cisco Ios Xr 3.3.3
Cisco Ios Xr 3.3.2
356
VMScore
CVE-2014-3377
snmpd in Cisco IOS XR 5.1 and previous versions allows remote authenticated users to cause a denial of service (process reload) via a malformed SNMPv2 packet, aka Bug ID CSCun67791.
Cisco Ios Xr 4.3.1
Cisco Ios Xr 4.3.0
Cisco Ios Xr 4.0.2
Cisco Ios Xr 4.0.1
Cisco Ios Xr 3.8.1
Cisco Ios Xr 3.8.0
Cisco Ios Xr 3.6.1
Cisco Ios Xr 3.6
Cisco Ios Xr 3.4.2
Cisco Ios Xr 3.4.1
Cisco Ios Xr 3.4
Cisco Ios Xr 3.2.50
Cisco Ios Xr 3.2.4
Cisco Ios Xr 3.0
Cisco Ios Xr 2.0
Cisco Ios Xr 4.2.0
Cisco Ios Xr 4.1.2
Cisco Ios Xr 4.0.0
Cisco Ios Xr 3.9.2
Cisco Ios Xr 3.9.1
Cisco Ios Xr 3.7.3
Cisco Ios Xr 3.7.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »