Cisco

Ios Xe

554 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.3

CVE-2014-2183

  • EPSS 0.3%
  • Published 29.04.2014 10:37:04
  • Last modified 12.04.2025 10:46:40

The L2TP module in Cisco IOS XE 3.10S(.2) and earlier on ASR 1000 routers allows remote authenticated users to cause a denial of service (ESP card reload) via a malformed L2TP packet, aka Bug ID CSCun09973.

6.1

CVE-2012-5723

  • EPSS 0.18%
  • Published 24.04.2014 10:55:02
  • Last modified 12.04.2025 10:46:40

Cisco ASR 1000 devices with software before 3.8S, when BDI routing is enabled, allow remote attackers to cause a denial of service (device reload) via crafted (1) broadcast or (2) multicast ICMP packets with fragmentation, aka Bug ID CSCub55948.

5

CVE-2014-2143

  • EPSS 0.41%
  • Published 04.04.2014 15:10:37
  • Last modified 12.04.2025 10:46:40

The IKE implementation in Cisco IOS 15.4(1)T and earlier and IOS XE allows remote attackers to cause a denial of service (security-association drop) via crafted Main Mode packets, aka Bug ID CSCun31021.

7.8

CVE-2014-2108

  • EPSS 1.1%
  • Published 27.03.2014 21:55:09
  • Last modified 12.04.2025 10:46:40

Cisco IOS 12.2 and 15.0 through 15.3 and IOS XE 3.2 through 3.7 before 3.7.5S and 3.8 through 3.10 before 3.10.1S allow remote attackers to cause a denial of service (device reload) via a malformed IKEv2 packet, aka Bug ID CSCui88426.

7.8

CVE-2014-2113

  • EPSS 1.1%
  • Published 27.03.2014 21:55:09
  • Last modified 12.04.2025 10:46:40

Cisco IOS 15.1 through 15.3 and IOS XE 3.3 and 3.5 before 3.5.2E; 3.7 before 3.7.5S; and 3.8, 3.9, and 3.10 before 3.10.2S allow remote attackers to cause a denial of service (I/O memory consumption and device reload) via a malformed IPv6 packet, aka...

7.8

CVE-2014-2106

  • EPSS 1.7%
  • Published 27.03.2014 21:55:08
  • Last modified 12.04.2025 10:46:40

Cisco IOS 15.3M before 15.3(3)M2 and IOS XE 3.10.xS before 3.10.2S allow remote attackers to cause a denial of service (device reload) via crafted SIP messages, aka Bug ID CSCug45898.

5.4

CVE-2013-6981

  • EPSS 2.02%
  • Published 28.12.2013 04:53:06
  • Last modified 11.04.2025 00:51:21

Cisco IOS XE 3.7S(.1) and earlier allows remote attackers to cause a denial of service (Packet Processor crash) via fragmented MPLS IP packets, aka Bug ID CSCul00709.

5.4

CVE-2013-6979

  • EPSS 0.33%
  • Published 23.12.2013 22:55:03
  • Last modified 11.04.2025 00:51:21

The VTY authentication implementation in Cisco IOS XE 03.02.xxSE and 03.03.xxSE incorrectly relies on the Linux-IOS internal-network configuration, which allows remote attackers to bypass authentication by leveraging access to a 192.168.x.2 source IP...

7.1

CVE-2013-6704

  • EPSS 0.51%
  • Published 03.12.2013 19:56:32
  • Last modified 11.04.2025 00:51:21

Cisco IOS XE does not properly manage memory for TFTP UDP flows, which allows remote attackers to cause a denial of service (memory consumption) via TFTP (1) client or (2) server traffic, aka Bug IDs CSCuh09324 and CSCty42686.

6.1

CVE-2013-6705

  • EPSS 0.35%
  • Published 03.12.2013 19:56:32
  • Last modified 11.04.2025 00:51:21

The IP Device Tracking (IPDT) feature in Cisco IOS and IOS XE allows remote attackers to cause a denial of service (IPDT AVL corruption and device reload) via a crafted sequence of ARP packets, aka Bug ID CSCuh38133.