Cisco

Ios Xr Software

30 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.6

CVE-2025-20142

  • EPSS 0.31%
  • Veröffentlicht 12.03.2025 16:12:23
  • Zuletzt bearbeitet 01.08.2025 18:40:27

A vulnerability in the IPv4 access control list (ACL) feature and quality of service (QoS) policy feature of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers, ASR 9902 Compact High-Performance Routers, and ASR 9903 Compact...

7.4

CVE-2025-20141

  • EPSS 0.07%
  • Veröffentlicht 12.03.2025 16:12:15
  • Zuletzt bearbeitet 06.08.2025 17:05:07

A vulnerability in the handling of specific packets that are punted from a line card to a route processor in Cisco IOS XR Software Release 7.9.2 could allow an unauthenticated, adjacent attacker to cause control plane traffic to stop working on multi...

8.8

CVE-2025-20138

  • EPSS 0.05%
  • Veröffentlicht 12.03.2025 16:12:06
  • Zuletzt bearbeitet 31.07.2025 18:11:01

A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to execute arbitrary commands as root on the underlying operating system of an affected device. This vulnerability is due to insufficient validation o...

8.6

CVE-2025-20115

  • EPSS 0.73%
  • Veröffentlicht 12.03.2025 16:11:58
  • Zuletzt bearbeitet 01.08.2025 16:13:48

A vulnerability in confederation implementation for the Border Gateway Protocol (BGP) in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. This vulnerability is due to a memory...

7.7

CVE-2025-20172

  • EPSS 0.15%
  • Veröffentlicht 05.02.2025 17:15:24
  • Zuletzt bearbeitet 03.07.2025 15:48:37

A vulnerability in the SNMP subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an authenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper error...

6.8

CVE-2021-1440

  • EPSS 0.3%
  • Veröffentlicht 18.11.2024 16:15:10
  • Zuletzt bearbeitet 01.08.2025 18:28:33

A vulnerability in the implementation of the Resource Public Key Infrastructure (RPKI) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause the Border Gateway Protocol (BGP) process to crash, resulting in a d...

6.1

CVE-2022-20849

  • EPSS 0.02%
  • Veröffentlicht 15.11.2024 16:15:23
  • Zuletzt bearbeitet 01.08.2025 18:27:12

A vulnerability in the Broadband Network Gateway PPP over Ethernet (PPPoE) feature of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause the PPPoE process to continually crash. This vulnerability exists because the...

4.3

CVE-2022-20846

  • EPSS 0.19%
  • Veröffentlicht 15.11.2024 16:15:23
  • Zuletzt bearbeitet 05.08.2025 14:07:52

A vulnerability in the Cisco Discovery Protocol implementation for Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause the Cisco Discovery Protocol process to reload on an affected device. This vulnerabili...

6

CVE-2022-20845

  • EPSS 0.04%
  • Veröffentlicht 15.11.2024 16:15:22
  • Zuletzt bearbeitet 21.11.2024 06:43:40

A vulnerability in the TL1 function of Cisco Network Convergence System (NCS) 4000 Series could allow an authenticated, local attacker to cause a memory leak in the TL1 process. This vulnerability is due to TL1 not freeing memory under some con...

8.8

CVE-2022-20655

  • EPSS 0.42%
  • Veröffentlicht 15.11.2024 16:15:20
  • Zuletzt bearbeitet 18.11.2024 17:11:56

A vulnerability in the implementation of the CLI on a device that is running ConfD could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient validation of a process argument on an a...