CVE-2024-20320
- EPSS 0.19%
- Veröffentlicht 13.03.2024 17:15:48
- Zuletzt bearbeitet 05.08.2025 14:40:07
A vulnerability in the SSH client feature of Cisco IOS XR Software for Cisco 8000 Series Routers and Cisco Network Convergence System (NCS) 540 Series and 5700 Series Routers could allow an authenticated, local attacker to elevate privileges on an af...
CVE-2024-20322
- EPSS 0.49%
- Veröffentlicht 13.03.2024 17:15:48
- Zuletzt bearbeitet 05.08.2025 14:41:53
A vulnerability in the access control list (ACL) processing on Pseudowire interfaces in the ingress direction of Cisco IOS XR Software could allow an unauthenticated, remote attacker to bypass a configured ACL. This vulnerability is due to imprope...
CVE-2024-20327
- EPSS 0.34%
- Veröffentlicht 13.03.2024 17:15:48
- Zuletzt bearbeitet 06.05.2025 17:11:55
A vulnerability in the PPP over Ethernet (PPPoE) termination feature of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, adjacent attacker to crash the ppp_ma process, resulting in a denial ...
CVE-2023-44487
- EPSS 100%
- Veröffentlicht 10.10.2023 14:15:10
- Zuletzt bearbeitet 12.05.2026 15:10:32
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
- EPSS 0.09%
- Veröffentlicht 13.09.2023 17:15:09
- Zuletzt bearbeitet 21.11.2024 07:40:38
A vulnerability in Cisco IOS XR Software image verification checks could allow an authenticated, local attacker to execute arbitrary code on the underlying operating system. This vulnerability is due to a time-of-check, time-of-use (TOCTOU) race c...
CVE-2023-20190
- EPSS 0.55%
- Veröffentlicht 13.09.2023 17:15:09
- Zuletzt bearbeitet 21.11.2024 07:40:47
A vulnerability in the classic access control list (ACL) compression feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to bypass the protection that is offered by a configured ACL on an affected device. This vulnerab...
CVE-2023-20191
- EPSS 0.46%
- Veröffentlicht 13.09.2023 17:15:09
- Zuletzt bearbeitet 21.11.2024 07:40:47
A vulnerability in the access control list (ACL) processing on MPLS interfaces in the ingress direction of Cisco IOS XR Software could allow an unauthenticated, remote attacker to bypass a configured ACL. This vulnerability is due to incomplete su...
CVE-2023-20233
- EPSS 0.27%
- Veröffentlicht 13.09.2023 17:15:09
- Zuletzt bearbeitet 21.11.2024 07:40:57
A vulnerability in the Connectivity Fault Management (CFM) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to incorrect ...
CVE-2023-20236
- EPSS 0.1%
- Veröffentlicht 13.09.2023 17:15:09
- Zuletzt bearbeitet 21.11.2024 07:40:57
A vulnerability in the iPXE boot function of Cisco IOS XR software could allow an authenticated, local attacker to install an unverified software image on an affected device. This vulnerability is due to insufficient image verification. An attacke...
CVE-2023-20049
- EPSS 1.05%
- Veröffentlicht 09.03.2023 22:15:52
- Zuletzt bearbeitet 21.11.2024 07:40:26
A vulnerability in the bidirectional forwarding detection (BFD) hardware offload feature of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers, ASR 9902 Compact High-Performance Routers, and ASR 9903 Compact High-Performance...