Cisco

Ios Xe

550 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2014-3327

  • EPSS 1.45%
  • Veröffentlicht 11.08.2014 22:55:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The EnergyWise module in Cisco IOS 12.2, 15.0, 15.1, 15.2, and 15.4 and IOS XE 3.2.xXO, 3.3.xSG, 3.4.xSG, and 3.5.xE before 3.5.3E allows remote attackers to cause a denial of service (device reload) via a crafted IPv4 packet, aka Bug ID CSCup52101.

5

CVE-2014-3309

  • EPSS 0.21%
  • Veröffentlicht 09.07.2014 11:07:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The NTP implementation in Cisco IOS and IOS XE does not properly support use of the access-group command for a "deny all" configuration, which allows remote attackers to bypass intended restrictions on time synchronization via a standard query, aka B...

4.8

CVE-2014-3290

  • EPSS 0.56%
  • Veröffentlicht 14.06.2014 11:18:55
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The mDNS implementation in Cisco IOS XE 3.12S does not properly interact with autonomic networking, which allows remote attackers to obtain sensitive networking-services information by sniffing the network or overwrite networking-services data via a ...

6.1

CVE-2014-3284

  • EPSS 0.63%
  • Veröffentlicht 25.05.2014 22:55:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cisco IOS XE on ASR1000 devices, when PPPoE termination is enabled, allows remote attackers to cause a denial of service (device reload) via a malformed PPPoE packet, aka Bug ID CSCuo55180.

6.8

CVE-2014-3269

  • EPSS 0.32%
  • Veröffentlicht 20.05.2014 11:13:38
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The SNMP module in Cisco IOS XE 3.5E allows remote authenticated users to cause a denial of service (device reload) by polling frequently, aka Bug ID CSCug65204.

4.3

CVE-2014-3262

  • EPSS 0.64%
  • Veröffentlicht 16.05.2014 11:12:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Locator/ID Separation Protocol (LISP) implementation in Cisco IOS 15.3(3)S and earlier and IOS XE does not properly validate parameters in ITR control messages, which allows remote attackers to cause a denial of service (CEF outage and packet dro...

6.3

CVE-2014-2183

  • EPSS 0.3%
  • Veröffentlicht 29.04.2014 10:37:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The L2TP module in Cisco IOS XE 3.10S(.2) and earlier on ASR 1000 routers allows remote authenticated users to cause a denial of service (ESP card reload) via a malformed L2TP packet, aka Bug ID CSCun09973.

6.1

CVE-2012-5723

  • EPSS 0.18%
  • Veröffentlicht 24.04.2014 10:55:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cisco ASR 1000 devices with software before 3.8S, when BDI routing is enabled, allow remote attackers to cause a denial of service (device reload) via crafted (1) broadcast or (2) multicast ICMP packets with fragmentation, aka Bug ID CSCub55948.

5

CVE-2014-2143

  • EPSS 0.41%
  • Veröffentlicht 04.04.2014 15:10:37
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The IKE implementation in Cisco IOS 15.4(1)T and earlier and IOS XE allows remote attackers to cause a denial of service (security-association drop) via crafted Main Mode packets, aka Bug ID CSCun31021.

7.8

CVE-2014-2108

  • EPSS 1.1%
  • Veröffentlicht 27.03.2014 21:55:09
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cisco IOS 12.2 and 15.0 through 15.3 and IOS XE 3.2 through 3.7 before 3.7.5S and 3.8 through 3.10 before 3.10.1S allow remote attackers to cause a denial of service (device reload) via a malformed IKEv2 packet, aka Bug ID CSCui88426.