Cisco

Ios

516 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2013-6693

  • EPSS 0.37%
  • Veröffentlicht 22.11.2013 01:55:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The MLDP implementation in Cisco IOS 15.3(3)S and earlier on 7600 routers, when many VRFs are configured, allows remote attackers to cause a denial of service (chunk corruption and device reload) by establishing many multicast flows, aka Bug ID CSCue...

6.8

CVE-2013-6686

  • EPSS 0.32%
  • Veröffentlicht 18.11.2013 03:55:06
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The SSL VPN implementation in Cisco IOS 15.3(1)T2 and earlier allows remote authenticated users to cause a denial of service (interface queue wedge) via crafted DTLS packets in an SSL session, aka Bug IDs CSCuh97409 and CSCud90568.

6.4

CVE-2013-5552

  • EPSS 0.16%
  • Veröffentlicht 13.11.2013 15:55:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cisco IOS 12.4(24)MDB9 and earlier on Content Services Gateway (CSG) devices does not properly implement the "parse error drop" feature, which allows remote attackers to bypass intended access restrictions via a crafted series of packets, aka Bug ID ...

7.8

CVE-2013-5553

  • EPSS 0.43%
  • Veröffentlicht 08.11.2013 04:47:23
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple memory leaks in Cisco IOS 15.1 before 15.1(4)M7 allow remote attackers to cause a denial of service (memory consumption or device reload) by sending a crafted SIP message over (1) IPv4 or (2) IPv6, aka Bug IDs CSCuc42558 and CSCug25383.

4.3

CVE-2013-5548

  • EPSS 0.4%
  • Veröffentlicht 01.11.2013 02:55:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The IKEv2 implementation in Cisco IOS, when AES-GCM or AES-GMAC is used, allows remote attackers to bypass certain IPsec anti-replay features via IPsec tunnel traffic, aka Bug ID CSCuj47795.

6.8

CVE-2013-5522

  • EPSS 0.08%
  • Veröffentlicht 25.10.2013 03:52:54
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cisco IOS on Catalyst 3750X switches has default Service Module credentials, which makes it easier for local users to gain privileges via a Service Module login, aka Bug ID CSCue92286.

5.7

CVE-2013-5499

  • EPSS 0.17%
  • Veröffentlicht 10.10.2013 10:55:06
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The remember feature in the DHCP server in Cisco IOS allows remote attackers to cause a denial of service (device reload) by acquiring a lease and then sending a DHCPRELEASE message, aka Bug ID CSCuh46822.

5.7

CVE-2013-5527

  • EPSS 0.47%
  • Veröffentlicht 10.10.2013 10:55:06
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The OSPF functionality in Cisco IOS and IOS XE allows remote attackers to cause a denial of service (device reload) via crafted options in an LSA type 11 packet, aka Bug ID CSCui21030.

7.1

CVE-2013-5472

  • EPSS 0.4%
  • Veröffentlicht 27.09.2013 10:08:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The NTP implementation in Cisco IOS 12.0 through 12.4 and 15.0 through 15.1, and IOS XE 2.1 through 3.3, does not properly handle encapsulation of multicast NTP packets within MSDP SA messages, which allows remote attackers to cause a denial of servi...

7.8

CVE-2013-5473

  • EPSS 0.43%
  • Veröffentlicht 27.09.2013 10:08:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Memory leak in Cisco IOS 12.2, 15.1, and 15.2; IOS XE 3.4.2S through 3.4.5S; and IOS XE 3.6.xS before 3.6.1S allows remote attackers to cause a denial of service (memory consumption or device reload) via malformed IKEv1 packets, aka Bug ID CSCtx66011...