Cisco Ios Software vulnerabilities

CVE-2019-1751 [HIGH] CWE-20 CVE-2019-1751: A vulnerability in the Network Address Translation 64 (NAT64) functions of Cisco IOS Software could A vulnerability in the Network Address Translation 64 (NAT64) functions of Cisco IOS Software could allow an unauthenticated, remote attacker to cause either an interface queue wedge or a device reload. The vulnerability is due to the incorrect handling of certain IPv4 packet streams that are sent through the device. An attacker could exploit this vulnera

CVE-2019-1758 [MEDIUM] CWE-287 CVE-2019-1758: A vulnerability in 802.1x function of Cisco IOS Software on the Catalyst 6500 Series Switches could A vulnerability in 802.1x function of Cisco IOS Software on the Catalyst 6500 Series Switches could allow an unauthenticated, adjacent attacker to access the network prior to authentication. The vulnerability is due to how the 802.1x packets are handled in the process path. An attacker could exploit this vulnerability by attempting to connect to the ne

CVE-2018-0467 [HIGH] CWE-20 CVE-2018-0467: A vulnerability in the IPv6 processing code of Cisco IOS and IOS XE Software could allow an unauthen A vulnerability in the IPv6 processing code of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload. The vulnerability is due to incorrect handling of specific IPv6 hop-by-hop options. An attacker could exploit this vulnerability by sending a malicious IPv6 packet to or through the affected device. A

CVE-2018-0473 [HIGH] CWE-399 CVE-2018-0473: A vulnerability in the Precision Time Protocol (PTP) subsystem of Cisco IOS Software could allow an A vulnerability in the Precision Time Protocol (PTP) subsystem of Cisco IOS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition of the Precision Time Protocol. The vulnerability is due to insufficient processing of PTP packets. An attacker could exploit this vulnerability by sending a custom PTP packet to

CVE-2018-15373 [HIGH] CWE-399 CVE-2018-15373: A vulnerability in the implementation of Cisco Discovery Protocol functionality in Cisco IOS Softwar A vulnerability in the implementation of Cisco Discovery Protocol functionality in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to exhaust memory on an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to improper memory handling by the affected software when t

CVE-2018-0475 [HIGH] CWE-20 CVE-2018-0475: A vulnerability in the implementation of the cluster feature of Cisco IOS Software and Cisco IOS XE A vulnerability in the implementation of the cluster feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to trigger a denial of service (DoS) condition on an affected device. The vulnerability is due to improper input validation when handling Cluster Management Protocol (CMP) messages. An attacker coul

CVE-2018-15377 [HIGH] CWE-400 CVE-2018-15377: A vulnerability in the Cisco Network Plug and Play agent, also referred to as the Cisco Open Plug-n- A vulnerability in the Cisco Network Plug and Play agent, also referred to as the Cisco Open Plug-n-Play agent, of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a memory leak on an affected device. The vulnerability is due to insufficient input validation by the affected software. An attacker cou

CVE-2018-0485 [HIGH] CWE-19 CVE-2018-0485: A vulnerability in the SM-1T3/E3 firmware on Cisco Second Generation Integrated Services Routers (IS A vulnerability in the SM-1T3/E3 firmware on Cisco Second Generation Integrated Services Routers (ISR G2) and the Cisco 4451-X Integrated Services Router (ISR4451-X) could allow an unauthenticated, remote attacker to cause the ISR G2 Router or the SM-1T3/E3 module on the ISR4451-X to reload, resulting in a denial of service (DoS) condition on an affected

CVE-2018-15375 [MEDIUM] CWE-123 CVE-2018-15375: A vulnerability in the embedded test subsystem of Cisco IOS Software for Cisco 800 Series Industrial A vulnerability in the embedded test subsystem of Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers could allow an authenticated, local attacker to write arbitrary values to arbitrary locations in the memory space of an affected device. The vulnerability is due to the presence of certain test commands that were intended

CVE-2018-15376 [MEDIUM] CWE-123 CVE-2018-15376: A vulnerability in the embedded test subsystem of Cisco IOS Software for Cisco 800 Series Industrial A vulnerability in the embedded test subsystem of Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers could allow an authenticated, local attacker to write arbitrary values to arbitrary locations in the memory space of an affected device. The vulnerability is due to the presence of certain test commands that were intended

CVE-2018-0466 [MEDIUM] CWE-399 CVE-2018-0466: A vulnerability in the Open Shortest Path First version 3 (OSPFv3) implementation in Cisco IOS and I A vulnerability in the Open Shortest Path First version 3 (OSPFv3) implementation in Cisco IOS and IOS XE Software could allow an unauthenticated, adjacent attacker to cause an affected device to reload. The vulnerability is due to incorrect handling of specific OSPFv3 packets. An attacker could exploit this vulnerability by sending crafted OSPFv3 Lin

CVE-2018-15369 [MEDIUM] CWE-20 CVE-2018-15369: A vulnerability in the TACACS+ client subsystem of Cisco IOS Software and Cisco IOS XE Software coul A vulnerability in the TACACS+ client subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerability is due to improper handling of crafted TACACS+ response packets by the affected software. An attacker